260531
|
- |
|
joachim_noreiko
|
flag_module
|
Cross-site scripting (XSS) vulnerability in the administration page in the Flag module 7.x-3.x before 7.x-3.1 for Drupal allows remote authenticated users with the "Administer flags" permission to in…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5964
|
2013-10-11 03:56 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260532
|
- |
|
ibm
|
sterling_b2b_integrator sterling_file_gateway
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2.4 and Sterling File Gateway allow remote attackers to inject arbitrary web script or HTML via unspecified vector…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0455
|
2013-10-11 03:33 |
2013-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260533
|
- |
|
google
|
android
|
diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service …
|
NVD-CWE-noinfo
|
CVE-2012-4220
|
2013-10-11 03:28 |
2012-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260534
|
- |
|
digium
|
asterisk_business_edition asterisk asteriske certified_asterisk
|
channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Asterisk Business Edition C.3.x before C.3.7.5, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Aste…
|
CWE-399
Resource Management Errors
|
CVE-2012-3863
|
2013-10-11 03:24 |
2012-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260535
|
- |
|
cisco
|
prime_central_for_hosted_collaboration_solution
|
The portal in Cisco Prime Central for Hosted Collaboration Solution (HCS) places cleartext credentials in temporary files, which allows local users to obtain sensitive information by leveraging weak …
|
CWE-255
Credentials Management
|
CVE-2013-3409
|
2013-10-11 03:21 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260536
|
- |
|
cisco
|
ios
|
The remember feature in the DHCP server in Cisco IOS allows remote attackers to cause a denial of service (device reload) by acquiring a lease and then sending a DHCPRELEASE message, aka Bug ID CSCuh…
|
NVD-CWE-noinfo
|
CVE-2013-5499
|
2013-10-11 03:10 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260537
|
- |
|
squid-cache
|
squid
|
The strHdrAcptLangGetItem function in errorpage.cc in Squid 3.2.x before 3.2.9 and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a ",…
|
CWE-20
Improper Input Validation
|
CVE-2013-1839
|
2013-10-11 02:41 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260538
|
- |
|
cisco
|
video_surveillance_operations_manager
|
The administrative web interface in Cisco Video Surveillance Operations Manager does not properly perform authentication, which allows remote attackers to watch video feeds via a crafted URL, aka Bug…
|
CWE-287
Improper Authentication
|
CVE-2013-3417
|
2013-10-11 01:54 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260539
|
- |
|
emeric_vernat
|
javamelody
|
Cross-site scripting (XSS) vulnerability in HtmlSessionInformationsReport.java in JavaMelody 1.46 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted X-Forwarded-…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4378
|
2013-10-11 01:52 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260540
|
- |
|
adobe
|
robohelp
|
MDBMS.dll in Adobe RoboHelp 10 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5327
|
2013-10-10 22:39 |
2013-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|