|
290101
|
- |
|
idleman
|
leed
|
Multiple cross-site request forgery (CSRF) vulnerabilities in action.php in Leed (Light Feed), possibly before 1.5 Stable, allow remote attackers to hijack the authentication of administrators for un…
|
CWE-352
Origin Validation Error
|
CVE-2013-2628
|
2024-11-21 10:52 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290102
|
- |
|
idleman
|
leed
|
SQL injection vulnerability in action.php in Leed (Light Feed), possibly before 1.5 Stable, allows remote attackers to execute arbitrary SQL commands via the id parameter in a removeFolder action.
|
CWE-89
SQL Injection
|
CVE-2013-2627
|
2024-11-21 10:52 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290103
|
- |
|
cooperindustries
|
smp_4_gateway_\(data_concentrator\)
smp_4\/dp_gateway_\(data_concentrator\)
smp_16_gateway_\(data_concentrator\)
|
The DNP3 component in Cooper Power Systems SMP 4, 4/DP, and 16 gateways allows physically proximate attackers to cause a denial of service (reboot or link outage) via crafted input over a serial line.
|
CWE-20
Improper Input Validation
|
CVE-2013-2816
|
2024-11-21 10:52 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290104
|
- |
|
cooperindustries
|
dnp3_master_opc_server
|
Cooper Power Systems Cybectec DNP3 Master OPC Server allows remote attackers to cause a denial of service (unhandled exception and process crash) via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2013-2814
|
2024-11-21 10:52 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290105
|
- |
|
cooperindustries
|
smp_4_gateway_\(data_concentrator\)
smp_4\/dp_gateway_\(data_concentrator\)
smp_16_gateway_\(data_concentrator\)
|
The DNP3 component in Cooper Power Systems SMP 4, 4/DP, and 16 gateways allows remote attackers to cause a denial of service (reboot or link outage) via a crafted DNP3 TCP packet.
|
CWE-20
Improper Input Validation
|
CVE-2013-2813
|
2024-11-21 10:52 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290106
|
- |
|
ibm
|
rational_software_architect_design_manager
rhapsody_design_manager
|
Directory traversal vulnerability in the client in IBM Rational Software Architect Design Manager and Rhapsody Design Manager 3.x and 4.x before 4.0.5 allows local users to read arbitrary files via v…
|
CWE-22
Path Traversal
|
CVE-2013-3043
|
2024-11-21 10:52 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290107
|
- |
|
ibm
|
rational_software_architect_design_manager
rhapsody_design_manager
|
Directory traversal vulnerability in the server in IBM Rational Software Architect Design Manager and Rhapsody Design Manager 3.x and 4.x before 4.0.5 allows local users to read arbitrary files via v…
|
CWE-22
Path Traversal
|
CVE-2013-3042
|
2024-11-21 10:52 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290108
|
- |
|
netgear
|
raidiator
|
Cross-site request forgery (CSRF) vulnerability in frontview/lib/np_handler.pl in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to hijack the authentication…
|
CWE-352
Origin Validation Error
|
CVE-2013-2752
|
2024-11-21 10:52 |
2013-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290109
|
- |
|
netgear
|
raidiator
|
Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to execute arbit…
|
CWE-94
Code Injection
|
CVE-2013-2751
|
2024-11-21 10:52 |
2013-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290110
|
- |
|
linux
|
linux_kernel
|
The perf_trace_event_perm function in kernel/trace/trace_event_perf.c in the Linux kernel before 3.12.2 does not properly restrict access to the perf subsystem, which allows local users to enable fun…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2930
|
2024-11-21 10:52 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
