|
258901
|
- |
|
novatech
|
orion5_dnp_master
orion5_dnp_slave
orion5r_dnp_master
orion5r_dnp_slave
orionlx_dnp_master
orionlx_dnp_slave
|
NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow remote attacke…
|
CWE-20
Improper Input Validation
|
CVE-2013-2821
|
2013-12-27 01:44 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258902
|
- |
|
novatech
|
orion5_dnp_master
orion5_dnp_slave
orion5r_dnp_master
orion5r_dnp_slave
orionlx_dnp_master
orionlx_dnp_slave
|
NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow physically pro…
|
CWE-20
Improper Input Validation
|
CVE-2013-2822
|
2013-12-27 01:43 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258903
|
- |
|
redhat
|
jboss_operations_network
|
Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other un…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4452
|
2013-12-27 00:50 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258904
|
- |
|
optimizepress
|
optimizepress
|
Multiple unrestricted file upload vulnerabilities in (1) media-upload.php, (2) media-upload-lncthumb.php, and (3) media-upload-sq_button.php in lib/admin/ in the OptimizePress theme before 1.61 for W…
|
CWE-20
Improper Input Validation
|
CVE-2013-7102
|
2013-12-25 07:07 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258905
|
- |
|
debian
fedoraproject
phil_schwartz
|
debian_linux
fedora
denyhosts
|
denyhosts 2.6 uses an incorrect regular expression when analyzing authentication logs, which allows remote attackers to cause a denial of service (incorrect block of IP addresses) via crafted login n…
|
CWE-287
Improper Authentication
|
CVE-2013-6890
|
2013-12-25 02:16 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258906
|
- |
|
novell
|
client
|
The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service (bugcheck and BSOD) via an IOCTL call for an invalid IOCTL.
|
CWE-20
Improper Input Validation
|
CVE-2013-3705
|
2013-12-24 07:29 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258907
|
- |
|
cisco
|
nx-os
|
Directory traversal vulnerability in filesys in Cisco NX-OS 6.1(2) and earlier allows local users to access arbitrary files via crafted command-line arguments during a delete action, aka Bug IDs CSCt…
|
CWE-22
Path Traversal
|
CVE-2012-4135
|
2013-12-24 02:15 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258908
|
- |
|
cisco
|
nx-os
|
Directory traversal vulnerability in tar in Cisco NX-OS allows local users to access arbitrary files via crafted command-line arguments, aka Bug IDs CSCty07157, CSCty07159, CSCty07162, and CSCty07164.
|
CWE-22
Path Traversal
|
CVE-2012-4131
|
2013-12-24 01:09 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258909
|
- |
|
idleman
|
leed
|
Multiple cross-site request forgery (CSRF) vulnerabilities in action.php in Leed (Light Feed), possibly before 1.5 Stable, allow remote attackers to hijack the authentication of administrators for un…
|
CWE-352
Origin Validation Error
|
CVE-2013-2628
|
2013-12-24 00:28 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258910
|
- |
|
idleman
|
leed
|
SQL injection vulnerability in action.php in Leed (Light Feed), possibly before 1.5 Stable, allows remote attackers to execute arbitrary SQL commands via the id parameter in a removeFolder action.
|
CWE-89
SQL Injection
|
CVE-2013-2627
|
2013-12-24 00:27 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
