260401
|
- |
|
apple
|
iphone_os
|
The extensions APIs in the kernel in Apple iOS before 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote attackers to bypass the AS…
|
CWE-200
Information Exposure
|
CVE-2012-3749
|
2013-08-17 15:47 |
2012-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260402
|
- |
|
mcafee
|
asap_virusscan
|
Directory traversal vulnerability in McAfee ASaP VirusScan agent 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request.
|
NVD-CWE-Other
|
CVE-2001-1144
|
2013-08-17 13:16 |
2001-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260403
|
- |
|
scriptsez
|
ez_cart
|
Cross-site scripting (XSS) vulnerability in index.php in ScriptsEz Ez Cart allows remote attackers to inject arbitrary web script or HTML via the sid parameter in a showcat action.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4317
|
2013-08-16 15:54 |
2009-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260404
|
- |
|
joomla
|
com_weblinks
|
SQL injection vulnerability in the Weblinks (com_weblinks) component for Joomla! and Mambo 1.0.9 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter.
|
CWE-89
SQL Injection
|
CVE-2006-7247
|
2013-08-16 14:46 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260405
|
- |
|
apple
|
quicktime mac_os_x
|
The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application…
|
NVD-CWE-Other
|
CVE-2007-0588
|
2013-08-15 14:21 |
2007-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260406
|
- |
|
phpfox
|
phpfox
|
SQL injection vulnerability in PHPFox before 3.6.0 (build6) allows remote attackers to execute arbitrary SQL commands via the search[sort_by] parameter to user/browse/view_/.
|
CWE-89
SQL Injection
|
CVE-2013-5121
|
2013-08-15 02:52 |
2013-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260407
|
- |
|
phpfox
|
phpfox
|
SQL injection vulnerability in PHPFox before 3.6.0 (build4) allows remote attackers to execute arbitrary SQL commands via the search[gender] parameter to user/browse/view_/.
|
CWE-89
SQL Injection
|
CVE-2013-5120
|
2013-08-15 02:31 |
2013-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260408
|
- |
|
libraw
|
libraw
|
Buffer overflow in the exposure correction code in LibRaw before 0.15.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2127
|
2013-08-15 02:14 |
2013-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260409
|
- |
|
siemens
|
comos
|
The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation restrict…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4943
|
2013-08-14 04:50 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260410
|
- |
|
cotonti
|
cotonti_siena
|
SQL injection vulnerability in modules/rss/rss.php in Cotonti before 0.9.14 allows remote attackers to execute arbitrary SQL commands via the "c" parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2013-4789
|
2013-08-14 03:45 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|