|
291431
|
- |
|
terillion
|
terillion_reviews_plugin
|
Cross-site scripting (XSS) vulnerability in the Terillion Reviews plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ProfileId field.
|
CWE-79
Cross-site Scripting
|
CVE-2013-2501
|
2024-11-21 10:51 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291432
|
- |
|
siteminder_federation
siteminder_agent_for_sharepoint
siteminder_for_secure_proxy_server
|
r6.0
2010
12.0
6.0
12.1
12.5
|
CA SiteMinder Federation (FSS) 12.5, 12.0, and r6; Federation (Standalone) 12.1 and 12.0; Agent for SharePoint 2010; and SiteMinder for Secure Proxy Server 6.0, 12.0, and 12.5 does not properly verif…
|
CWE-20
Improper Input Validation
|
CVE-2013-2279
|
2024-11-21 10:51 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291433
|
- |
|
puppetlabs
puppet
canonical
|
puppet
puppet_enterprise
ubuntu_linux
|
The default configuration for puppet masters 0.25.0 and later in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2, allows r…
|
NVD-CWE-noinfo
|
CVE-2013-2275
|
2024-11-21 10:51 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291434
|
- |
|
puppetlabs
puppet
|
puppet
puppet_enterprise
|
Puppet 2.6.x before 2.6.18 and Puppet Enterprise 1.2.x before 1.2.7 allows remote authenticated users to execute arbitrary code on the puppet master, or an agent with puppet kick enabled, via a craft…
|
NVD-CWE-noinfo
|
CVE-2013-2274
|
2024-11-21 10:51 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291435
|
- |
|
citrix
|
access_gateway
|
Unspecified vulnerability in Citrix Access Gateway Standard Edition 5.0.x before 5.0.4.223524 allows remote attackers to access network resources via unknown attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2263
|
2024-11-21 10:51 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291436
|
- |
|
firebirdsql
|
firebird
|
Stack-based buffer overflow in Firebird 2.1.3 through 2.1.5 before 18514, and 2.5.1 through 2.5.3 before 26623, on Windows allows remote attackers to execute arbitrary code via a crafted packet to TC…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2492
|
2024-11-21 10:51 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291437
|
- |
|
tibco
|
spotfire_web_player
|
The Engine in TIBCO Spotfire Web Player 3.3.x before 3.3.3, 4.0.x before 4.0.3, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 does not properly implement access control, which allows remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2373
|
2024-11-21 10:51 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291438
|
- |
|
tibco
|
spotfire_web_player
|
Cross-site scripting (XSS) vulnerability in the Engine in TIBCO Spotfire Web Player 3.3.x before 3.3.3, 4.0.x before 4.0.3, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to injec…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2372
|
2024-11-21 10:51 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291439
|
- |
|
tibco
|
spotfire_statistics_services
|
The Web API in the Statistics Server in TIBCO Spotfire Statistics Services 3.3.x before 3.3.1, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to obtain sensitive information via a…
|
CWE-200
Information Exposure
|
CVE-2013-2371
|
2024-11-21 10:51 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291440
|
- |
|
foscam
|
fi8919w
|
Directory traversal vulnerability in the web interface on Foscam devices with firmware before 11.37.2.49 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI, as demonstrated…
|
CWE-22
Path Traversal
|
CVE-2013-2560
|
2024-11-21 10:51 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
