260701
|
- |
|
dlink
|
dwl-2100ap dwl-2100ap_firmware
|
The SSH implementation on the D-Link Japan DWL-2100AP with firmware before R252JP-RC572 allows remote authenticated users to cause a denial of service (reboot) by leveraging login access.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4706
|
2013-09-24 07:27 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260702
|
- |
|
dlink
|
des-3810_firmware des-3810
|
The SSH implementation on D-Link Japan DES-3810 devices with firmware before R2.20.011 allows remote authenticated users to cause a denial of service (device hang) by leveraging login access.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4707
|
2013-09-24 07:25 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260703
|
- |
|
rodrigo_coimbra
|
nospam_pti
|
SQL injection vulnerability in wp-comments-post.php in the NOSpam PTI plugin 2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the comment_post_ID parameter.
|
CWE-89
SQL Injection
|
CVE-2013-5917
|
2013-09-24 04:23 |
2013-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260704
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
Cisco AnyConnect Secure Mobility Client on Mac OS X uses weak permissions for a library directory, which allows local users to gain privileges via a crafted library file, aka Bug ID CSCue33619.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1130
|
2013-09-24 00:16 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260705
|
- |
|
cisco
|
nx-os
|
The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service (device reload) via…
|
CWE-399
Resource Management Errors
|
CVE-2013-1121
|
2013-09-20 09:53 |
2013-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260706
|
- |
|
apple
|
mac_os_x
|
Power Management in Apple Mac OS X before 10.8.5 does not properly perform locking upon occurrences of a power assertion, which allows physically proximate attackers to bypass intended access restric…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1031
|
2013-09-20 00:02 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260707
|
- |
|
alienwp
|
hatch
|
Cross-site scripting (XSS) vulnerability in the Hatch theme 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with the "Administer content," "Create new article," or "Edit any artic…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4138
|
2013-09-19 10:10 |
2013-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260708
|
- |
|
emc
|
rsa_archer_egrc
|
Open redirect vulnerability in EMC RSA Archer GRC 5.x before 5.4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2013-3277
|
2013-09-19 10:03 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260709
|
- |
|
videowhisper
|
live_streaming_integration_plugin
|
Multiple cross-site scripting (XSS) vulnerabilities in ls/htmlchat.php in the VideoWhisper Live Streaming Integration plugin 4.25.3 and possibly earlier for WordPress allow remote attackers to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5714
|
2013-09-19 09:31 |
2013-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260710
|
- |
|
eucalyptus
|
eustore
|
Eucalyptus EuStore sets a blank root password in the default configuration of EMI 3868652036, EMI 0400376721, EMI 2425352071, and EMI 1347115203, which allows local users to gain privileges via unspe…
|
CWE-255
Credentials Management
|
CVE-2013-2297
|
2013-09-19 05:11 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|