|
289611
|
9.8 |
CRITICAL
Network
|
kamailio
|
kamailio
|
Insecure Temporary file vulnerability in /tmp/kamailio_fifo in kamailio 4.0.1.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2013-7426
|
2024-11-21 11:00 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289612
|
6.1 |
MEDIUM
Network
|
mapsplugin
|
googlemaps
|
Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the xmlns parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7430
|
2024-11-21 11:00 |
2017-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289613
|
- |
|
gnu
|
glibc
|
The getaddrinfo function in glibc before 2.15, when compiled with libidn and the AI_IDN flag is used, allows context-dependent attackers to cause a denial of service (invalid free) and possibly execu…
|
CWE-17
Code
|
CVE-2013-7424
|
2024-11-21 11:00 |
2015-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289614
|
- |
|
apple
perl
|
mac_os_x
perl
|
Integer underflow in regcomp.c in Perl before 5.20, as used in Apple OS X before 10.10.5 and other products, allows context-dependent attackers to execute arbitrary code or cause a denial of service …
|
CWE-189
Numeric Errors
|
CVE-2013-7422
|
2024-11-21 11:00 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289615
|
- |
|
gehealthcare
|
centricity_dms
|
The Ad Hoc Reporting feature in GE Healthcare Centricity DMS 4.2 has a password of Never!Mind for the Administrator user, which has unspecified impact and attack vectors. NOTE: it is not clear wheth…
|
CWE-255
Credentials Management
|
CVE-2013-7405
|
2024-11-21 11:00 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289616
|
- |
|
gehealthcare
|
discovery_nm_750b
|
GE Healthcare Discovery NM 750b has a password of 2getin for the insite account for (1) Telnet and (2) FTP, which has unspecified impact and attack vectors. NOTE: it is not clear whether this passwo…
|
CWE-255
Credentials Management
|
CVE-2013-7404
|
2024-11-21 11:00 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289617
|
- |
|
async-http-client_project
redhat
|
async-http-client
jboss_fuse
|
main/java/com/ning/http/client/AsyncHttpClientConfig.java in Async Http Client (aka AHC or async-http-client) before 1.9.0 does not require a hostname match during verification of X.509 certificates,…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2013-7398
|
2024-11-21 11:00 |
2015-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289618
|
- |
|
redhat
async-http-client_project
|
jboss_fuse
async-http-client
|
Async Http Client (aka AHC or async-http-client) before 1.9.0 skips X.509 certificate verification unless both a keyStore location and a trustStore location are explicitly set, which allows man-in-th…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2013-7397
|
2024-11-21 11:00 |
2015-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289619
|
- |
|
kanaka
|
novnc
|
noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http sessi…
|
CWE-310
Cryptographic Issues
|
CVE-2013-7436
|
2024-11-21 11:00 |
2015-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289620
|
- |
|
pbm212030_project
|
pbm212030
|
Multiple buffer overflows in pbm212030 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted PBM image, related to (1) stream line data, which t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7438
|
2024-11-21 11:00 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
