259741
|
- |
|
cisco
|
unified_meetingplace
|
Cross-site scripting (XSS) vulnerability in the web framework in the Application Server in Cisco Unified MeetingPlace allows remote attackers to inject arbitrary web script or HTML via an unspecified…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5495
|
2013-10-11 23:35 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259742
|
- |
|
symantec
|
network_access_control
|
Unquoted Windows search path vulnerability in Symantec Network Access Control (SNAC) 12.1 before RU2 allows local users to gain privileges via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2012-4349
|
2013-10-11 23:26 |
2012-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259743
|
- |
|
owncloud
|
owncloud
|
Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud before 4.0.6 allow remote attackers to hijack the authentication of arbitrary users for requests that use (1) addBookmark.php, (…
|
CWE-352
Origin Validation Error
|
CVE-2012-4393
|
2013-10-11 23:10 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259744
|
- |
|
python
|
setuptools
|
easy_install in setuptools before 0.7 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to e…
|
CWE-20
Improper Input Validation
|
CVE-2013-1633
|
2013-10-11 22:59 |
2013-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259745
|
- |
|
x2engine
|
x2crm
|
Cross-site scripting (XSS) vulnerability in X2Engine X2CRM before 3.5 allows remote attackers to inject arbitrary web script or HTML via the model parameter to index.php/admin/editor.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5693
|
2013-10-11 22:33 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259746
|
- |
|
google
|
android
|
drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center (QuIC) Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service (NULL pointer dereference) v…
|
CWE-20
Improper Input Validation
|
CVE-2012-4222
|
2013-10-11 22:31 |
2012-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259747
|
- |
|
google
|
android
|
Integer overflow in diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause …
|
CWE-189
Numeric Errors
|
CVE-2012-4221
|
2013-10-11 22:27 |
2012-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259748
|
- |
|
oracle
|
mysql
|
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.
|
NVD-CWE-noinfo
|
CVE-2013-3796
|
2013-10-11 22:20 |
2013-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259749
|
- |
|
symantec
|
messaging_gateway
|
Multiple directory traversal vulnerabilities in the management console in Symantec Messaging Gateway (SMG) 9.5.x allow remote authenticated users to read arbitrary files via a .. (dot dot) in the (1)…
|
CWE-22
Path Traversal
|
CVE-2012-4347
|
2013-10-11 22:18 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259750
|
- |
|
apple
|
iphone_os
|
Mobile Safari in Apple iOS before 7 allows remote attackers to spoof the URL bar via a crafted web site.
|
CWE-20
Improper Input Validation
|
CVE-2013-5152
|
2013-10-11 22:17 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|