|
258731
|
- |
|
hp
|
color_laserjet_cm1312nfi_multifunction_printer
color_laserjet_cm2320n_multifunction_printer
color_laserjet_cp1515
color_laserjet_cp1518
color_laserjet_cp2025_printer
color_laserjet_cp5…
|
Unspecified vulnerability on HP LaserJet M1522n and M2727; LaserJet Pro 100, 300, 400, CM1415fnw, CP1*, M121*, M1536dnf, and P1*; Color LaserJet CM* and CP*; and TopShot LaserJet Pro M275 printers al…
|
NVD-CWE-noinfo
|
CVE-2013-6193
|
2014-01-8 13:42 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258732
|
- |
|
hp
|
system_management_homepage
|
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en.
|
CWE-78
OS Command
|
CVE-2013-3576
|
2014-01-8 13:39 |
2013-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258733
|
- |
|
openstack
|
folsom
grizzly
havana
|
OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by cr…
|
CWE-399
Resource Management Errors
|
CVE-2013-2096
|
2014-01-8 13:37 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258734
|
- |
|
mini-stream
|
castripper
|
Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers to execute arbitrary code via a long URL in the [playlist] section in a .pls file, a different vector than CVE-20…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-5137
|
2014-01-7 11:53 |
2014-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258735
|
- |
|
juniper
|
ive_os
|
Cross-site scripting (XSS) vulnerability in the Secure Access Service Web rewriting feature in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS before 7.1r17, 7.3 before 7.3r8, 7.4…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6956
|
2014-01-4 13:51 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258736
|
- |
|
juniper
|
idp250
idp75
idp800
idp8200
|
Cross-site scripting (XSS) vulnerability in the web administrative component in Juniper IDP allows remote attackers to inject arbitrary web script or HTML via unspecified vectors to the ACM web serve…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6957
|
2014-01-4 13:51 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258737
|
- |
|
juniper
|
screenos
netscreen-5200
netscreen-5400
|
Juniper NetScreen Firewall running ScreenOS 5.4, 6.2, or 6.3, when the Ping of Death screen is disabled, allows remote attackers to cause a denial of service via a crafted packet.
|
NVD-CWE-noinfo
|
CVE-2013-6958
|
2014-01-4 13:51 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258738
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in the Image module in Drupal 7.x before 7.24 allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the descri…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6387
|
2014-01-4 13:50 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258739
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in the Color module in Drupal 7.x before 7.24 allows remote attackers to inject arbitrary web script or HTML via vectors related to CSS.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6388
|
2014-01-4 13:50 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258740
|
- |
|
drupal
|
drupal
|
Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.24 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2013-6389
|
2014-01-4 13:50 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
