259241
|
- |
|
dennis_bruecke
|
jquery_countdown
|
Cross-site scripting (XSS) vulnerability in the jQuery Countdown module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "access administration pages" permission to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4383
|
2014-02-5 05:40 |
2014-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259242
|
- |
|
gatehouse harris hughes_network_systems inmarsat japan_radio thuraya_telecommunications
|
gatehouse bgan 9201 9450 9502 inmarsat jue-250 jue-500 ip
|
The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite termina…
|
CWE-287
Improper Authentication
|
CVE-2013-6035
|
2014-02-5 01:26 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259243
|
- |
|
gatehouse harris hughes_network_systems inmarsat japan_radio thuraya_telecommunications
|
gatehouse bgan 9201 9450 9502 inmarsat jue-250 jue-500 ip
|
The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite termina…
|
CWE-255
Credentials Management
|
CVE-2013-6034
|
2014-02-5 01:25 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259244
|
- |
|
lexmark
|
c52x c53x c920 c935dn e250 e350 e450 t64x w840
|
Multiple cross-site scripting (XSS) vulnerabilities on Lexmark W840 through LS.HA.P252, T64x before LS.ST.P344, C935dn through LC.JO.P091, C920 through LS.TA.P152, C53x through LS.SW.P069, C52x throu…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6033
|
2014-02-5 00:37 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259245
|
- |
|
lexmark
|
25xxn c52x c53x c77x c78x c920 c935dn e250 e350 e450 n4000 n4050e n70xxe t64x w840 x642 x644 x646 x64xef x772 x78x x85x x94x
|
cgi-bin/postpf/cgi-bin/dynamic/config/config.html on Lexmark X94x before LC.BR.P142, X85x through LC4.BE.P487, X644 and X646 before LC2.MC.P374, X642 through LC2.MB.P318, W840 through LS.HA.P252, T64…
|
CWE-20
Improper Input Validation
|
CVE-2013-6032
|
2014-02-5 00:29 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259246
|
- |
|
craig_drummond
|
cantata
|
Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by reading the songs in the queue.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7301
|
2014-02-4 03:44 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259247
|
- |
|
robert_ancell
|
lightdm
|
Light Display Manager (aka LightDM) 1.4.x before 1.4.3, 1.6.x before 1.6.2, and 1.7.x before 1.7.14 uses 0664 permissions for the temporary .Xauthority file, which allows local users to obtain sensit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4331
|
2014-02-4 03:22 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259248
|
- |
|
enghouseinteractive
|
ivr_pro
|
An unspecified Enghouse Interactive Professional Services "addon product" in Enghouse Interactive IVR Pro (VIP2000) 9.0.3 (rel903), when using OpenVZ and fallback customization, uses the same SSH pri…
|
CWE-310
Cryptographic Issues
|
CVE-2013-6838
|
2014-01-31 15:07 |
2014-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259249
|
- |
|
justsystems
|
sanshiro
|
Unspecified vulnerability in JustSystems Sanshiro 2007 before update 3, 2008 before update 5, 2009 before update 6, and 2010 before update 6, and Sanshiro Viewer before 2.0.2.0, allows remote attacke…
|
NVD-CWE-noinfo
|
CVE-2014-0810
|
2014-01-30 03:39 |
2014-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259250
|
- |
|
eviware smartbear
|
soapui
|
The WSDL/WADL import functionality in SoapUI before 4.6.4 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL file.
|
CWE-94
Code Injection
|
CVE-2014-1202
|
2014-01-28 13:57 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|