|
258481
|
- |
|
visibility_software
|
cyber_recruiter
|
The user login page in Visibility Software Cyber Recruiter before 8.1.00 generates different responses for invalid password-retrieval attempts depending on which data elements are incorrect, which mi…
|
CWE-200
Information Exposure
|
CVE-2014-1931
|
2014-02-21 14:06 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258482
|
- |
|
d-link
|
dap_2253_firmware
dap_2253
|
Cross-site request forgery (CSRF) vulnerability in D-Link DAP-2253 Access Point (Rev. A1) with firmware before 1.30 allows remote attackers to hijack the authentication of administrators for requests…
|
CWE-352
Origin Validation Error
|
CVE-2013-7320
|
2014-02-21 14:06 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258483
|
- |
|
gnu
|
libmicrohttpd
|
The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash) via unspecified vectors that trigger an…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7038
|
2014-02-21 14:05 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258484
|
- |
|
gnu
|
libmicrohttpd
|
Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7039
|
2014-02-21 14:05 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258485
|
- |
|
detlef_pilzecker
|
proc\
|
The Proc::Daemon module 0.14 for Perl uses world-writable permissions for a file that stores a process ID, which allows local users to have an unspecified impact by modifying this file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7135
|
2014-02-21 14:05 |
2014-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258486
|
- |
|
maxxmarketing
|
joomshopping
|
Cross-site scripting (XSS) vulnerability in the JoomShopping (com_joomshopping) component before 4.3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the user_name par…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3933
|
2014-02-21 14:01 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258487
|
- |
|
oracle
|
mysql
|
Unspecified vulnerability in Oracle MySQL 5.6.10 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server Privileges.
|
NVD-CWE-noinfo
|
CVE-2013-2381
|
2014-02-21 13:59 |
2013-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258488
|
- |
|
oracle
|
mysql
|
Unspecified vulnerability in Oracle MySQL 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language, a different vulnerabil…
|
NVD-CWE-noinfo
|
CVE-2013-2395
|
2014-02-21 13:59 |
2013-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258489
|
- |
|
oracle
|
mysql
|
Unspecified vulnerability in Oracle MySQL 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.
|
NVD-CWE-noinfo
|
CVE-2013-1566
|
2014-02-21 13:58 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258490
|
- |
|
oracle
|
mysql
|
Unspecified vulnerability in Oracle MySQL 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language, a different vulnerabil…
|
NVD-CWE-noinfo
|
CVE-2013-1567
|
2014-02-21 13:58 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
