|
290931
|
- |
|
richard_cook
|
rgpg
|
The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2013-4203
|
2024-11-21 10:55 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290932
|
- |
|
xymon
|
xymon
|
Directory traversal vulnerability in the trend-data daemon (xymond_rrd) in Xymon 4.x before 4.3.12 allows remote attackers to delete arbitrary files via a .. (dot dot) in the host name in a "drophost…
|
CWE-22
Path Traversal
|
CVE-2013-4173
|
2024-11-21 10:55 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290933
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4167
|
2024-11-21 10:55 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290934
|
- |
|
mediawiki
|
mediawiki
|
Cross-site request forgery (CSRF) vulnerability in api/ApiQueryCheckUser.php in the CheckUser extension for MediaWiki, possibly Checkuser before 2.3, allows remote attackers to hijack the authenticat…
|
CWE-352
Origin Validation Error
|
CVE-2013-4306
|
2024-11-21 10:55 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290935
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in contrib/example.php in the SyntaxHighlight GeSHi extension for MediaWiki, possibly as downloaded before September 2013, allows remote attackers to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4305
|
2024-11-21 10:55 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290936
|
- |
|
x
|
x.org_x11
|
Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon …
|
CWE-399
Resource Management Errors
|
CVE-2013-4396
|
2024-11-21 10:55 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290937
|
- |
|
linux
|
linux_kernel
|
net/ipv6/ip6_output.c in the Linux kernel through 3.11.4 does not properly determine the need for UDP Fragmentation Offload (UFO) processing of small packets after the UFO queueing of a large packet,…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4387
|
2024-11-21 10:55 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290938
|
- |
|
linux
fedoraproject
redhat
|
linux_kernel
fedora
enterprise_linux
enterprise_mrg
|
Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms…
|
CWE-189
Numeric Errors
|
CVE-2013-4345
|
2024-11-21 10:55 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290939
|
- |
|
gnupg
|
gnupg
|
GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass int…
|
CWE-310
Cryptographic Issues
|
CVE-2013-4351
|
2024-11-21 10:55 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290940
|
- |
|
xinetd
redhat
|
xinetd
enterprise_linux
|
xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by l…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4342
|
2024-11-21 10:55 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
