|
260931
|
- |
|
sgi
|
irix
|
System Manager sysmgr GUI in SGI IRIX 6.4 and 6.3 allows remote attackers to execute commands by providing a trojan horse (1) runtask or (2) runexec descriptor file, which is used to execute a System…
|
NVD-CWE-Other
|
CVE-1999-1183
|
2013-08-21 13:05 |
1998-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260932
|
- |
|
redhat
|
enterprise_virtualization
|
VDSM in Red Hat Enterprise Virtualization 3 and 3.2 allows privileged guest users to cause the host to become "unavailable to the managment server" via guestInfo dictionaries with "unexpected fields."
|
NVD-CWE-Other
|
CVE-2013-0167
|
2013-08-20 23:22 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260933
|
- |
|
s9y
|
serendipity
|
Cross-site scripting (XSS) vulnerability in serendipity_admin_image_selector.php in Serendipity 1.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the serendipity[ht…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5314
|
2013-08-20 22:46 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260934
|
- |
|
bigtreecms
|
bigtree_cms
|
Cross-site request forgery (CSRF) vulnerability in core/admin/modules/users/update.php in BigTree CMS 4.0 RC2 and earlier allows remote attackers to hijack the authentication of administrators for re…
|
CWE-352
Origin Validation Error
|
CVE-2013-5313
|
2013-08-20 22:30 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260935
|
- |
|
vastal
|
phpvid
|
Multiple cross-site scripting (XSS) vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) n parameter to browse_videos.php or the (2)…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5312
|
2013-08-20 22:17 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260936
|
- |
|
vastal
|
phpvid
|
Multiple SQL injection vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to execute arbitrary SQL commands via the "n" parameter to (1) browse_videos.php or (2) members.php. NOTE:…
|
CWE-89
SQL Injection
|
CVE-2013-5311
|
2013-08-20 22:15 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260937
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.3.133 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3348
|
2013-08-20 12:23 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260938
|
- |
|
cisco
|
nx-os
nexus_1000v
|
The license-installation module in Cisco NX-OS on Nexus 1000V devices allows local users to execute arbitrary commands via crafted "install license" arguments, aka Bug ID CSCuh30824.
|
CWE-20
Improper Input Validation
|
CVE-2013-3400
|
2013-08-20 12:23 |
2013-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260939
|
- |
|
cisco
|
unified_communications_manager
|
An unspecified function in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(2) allows remote authenticated users to execute arbitrary commands via unknown vectors, aka Bug ID CSCuh73440.
|
CWE-94
Code Injection
|
CVE-2013-3402
|
2013-08-20 12:23 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260940
|
- |
|
cisco
|
unified_communications_manager
|
Multiple untrusted search path vulnerabilities in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allow local users to gain privileges by leveraging unspecified file-permission and…
|
NVD-CWE-Other
|
CVE-2013-3403
|
2013-08-20 12:23 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
