260571
|
- |
|
agilefleet
|
fleetcommander fleetcommander_kiosk
|
Per: http://cwe.mitre.org/data/definitions/434.html
'CWE-434: Unrestricted Upload of File with Dangerous Type'
|
NVD-CWE-Other
|
CVE-2012-4944
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260572
|
- |
|
agilefleet
|
fleetcommander fleetcommander_kiosk
|
Agile FleetCommander and FleetCommander Kiosk before 4.08 allow remote attackers to execute arbitrary commands via unspecified vectors, related to a "command injection" issue.
|
CWE-20
Improper Input Validation
|
CVE-2012-4945
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260573
|
- |
|
agilefleet
|
fleetcommander fleetcommander_kiosk
|
Per: http://cwe.mitre.org/data/definitions/77.html 'Command Injection'
|
CWE-20
Improper Input Validation
|
CVE-2012-4945
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260574
|
- |
|
hp
|
performance_insight
|
Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and 5.41, when Sybase is used, allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via u…
|
NVD-CWE-noinfo
|
CVE-2012-3270
|
2013-06-26 12:12 |
2012-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260575
|
- |
|
wolfgang_ziegler
|
rules
|
Cross-site scripting (XSS) vulnerability in the Rules module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with the "administer rules" permission to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2013-1906
|
2013-06-26 00:12 |
2013-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260576
|
- |
|
php
|
php
|
The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash)…
|
CWE-20
Improper Input Validation
|
CVE-2013-4636
|
2013-06-25 07:37 |
2013-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260577
|
- |
|
canon
|
mg3100_printer mg5300_printer mg6100_printer mp340_printer mp495_printer mx870_printer mx890_printer mx920_printer mx922_printer
|
The Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers allow remote attackers to cause a denial of service (device hang) via a crafted LAN_TXT24 parameter to English/…
|
CWE-20
Improper Input Validation
|
CVE-2013-4615
|
2013-06-25 07:31 |
2013-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260578
|
- |
|
canon
|
mg3100_printer mg5300_printer mg6100_printer mp340_printer mp495_printer mx870_printer mx890_printer mx920_printer mx922_printer
|
English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physicall…
|
CWE-255
Credentials Management
|
CVE-2013-4614
|
2013-06-25 07:30 |
2013-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260579
|
- |
|
canon
|
mg3100_printer mg5300_printer mg6100_printer mp340_printer mp495_printer mx870_printer mx890_printer mx920_printer mx922_printer
|
The default configuration of the administrative interface on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers does not require authentication, which allows remo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4613
|
2013-06-25 07:28 |
2013-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260580
|
- |
|
cisco
|
webex_social
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco WebEx Social allow remote attackers to hijack the authentication of arbitrary users via unspecified vectors, aka Bug IDs CSCuh10405…
|
CWE-352
Origin Validation Error
|
CVE-2013-3392
|
2013-06-25 07:16 |
2013-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|