|
258671
|
- |
|
feed_element_mapper_project
|
feed_element_mapper
|
Cross-site scripting (XSS) vulnerability in the Feed Element Mapper module for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4503
|
2014-05-15 01:50 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258672
|
- |
|
quiz_module_project
|
quiz
|
The default views in the Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote attackers to obtain sensitive quiz results via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4501
|
2014-05-15 01:43 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258673
|
- |
|
quiz_module_project
|
quiz
|
The Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote authenticated users with the "view any quiz results" or "view results for own quiz" permission to delete arbitrary results via the dele…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4500
|
2014-05-15 01:36 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258674
|
- |
|
gitlab
|
gitlab
gitlab-shell
|
The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell before 1.7.3, as used in GitLab 5.0 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands …
|
NVD-CWE-Other
|
CVE-2013-4490
|
2014-05-15 00:49 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258675
|
- |
|
gitlab
|
gitlab
gitlab-shell
|
Per: http://cwe.mitre.org/data/definitions/77.html
"CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')"
|
NVD-CWE-Other
|
CVE-2013-4490
|
2014-05-15 00:49 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258676
|
- |
|
o-dyn
|
collabtive
|
SQL injection vulnerability in Collabtive 1.2 allows remote authenticated users to execute arbitrary SQL commands via the folder parameter in a fileview_list action to manageajax.php.
|
CWE-89
SQL Injection
|
CVE-2014-3246
|
2014-05-15 00:40 |
2014-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258677
|
- |
|
tipsandtricks-hq
|
wordpress_simple_paypal_shopping_cart
|
Cross-site request forgery (CSRF) vulnerability in the WordPress Simple Paypal Shopping Cart plugin before 3.6 for WordPress allows remote attackers to hijack the authentication of administrators for…
|
CWE-352
Origin Validation Error
|
CVE-2013-2705
|
2014-05-15 00:35 |
2014-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258678
|
- |
|
adobe
|
illustrator
|
Stack-based buffer overflow in Adobe Illustrator CS6 before 16.0.5 and 16.2.x before 16.2.2 allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0513
|
2014-05-15 00:15 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258679
|
- |
|
adobe
|
acrobat_reader
acrobat
|
Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2014-0528
|
2014-05-14 23:54 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258680
|
- |
|
adobe
|
acrobat
acrobat_reader
|
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2014-0527
|
2014-05-14 23:52 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
