|
291161
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, all…
|
NVD-CWE-Other
|
CVE-2013-2580
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291162
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 have an empty password for the hardcoded "qmik" account, which allow…
|
CWE-255
Credentials Management
|
CVE-2013-2579
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291163
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote attackers to execute arbitr…
|
CWE-78
OS Command
|
CVE-2013-2578
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291164
|
- |
|
menalto
|
gallery
|
modules/gallery/helpers/data_rest.php in Gallery 3 before 3.0.9 allows remote attackers to bypass intended access restrictions and obtain sensitive information (image files) via the "full" string in …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2241
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291165
|
- |
|
menalto
|
gallery
|
lib/flowplayer.swf.php in Gallery 3 before 3.0.9 does not properly remove query fragments, which allows remote attackers to have an unspecified impact via a replay attack, a different vulnerability t…
|
NVD-CWE-noinfo
|
CVE-2013-2240
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291166
|
- |
|
menalto
|
gallery
|
The (1) uploadify and (2) flowplayer SWF files in Gallery 3 before 3.0.8 do not properly remove query parameters and fragments, which allows remote attackers to have an unspecified impact via a repla…
|
CWE-20
Improper Input Validation
|
CVE-2013-2138
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291167
|
- |
|
gnu
fedoraproject
|
glibc
fedora
|
pt_chown in GNU C Library (aka glibc or libc6) before 2.18 does not properly check permissions for tty files, which allows local users to change the permission on the files and obtain access to arbit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2207
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291168
|
- |
|
python
canonical
|
python
ubuntu_linux
|
Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python v…
|
CWE-399
Resource Management Errors
|
CVE-2013-2099
|
2024-11-21 10:51 |
2013-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291169
|
- |
|
wernerd
|
zrtpcpp
|
GNU ZRTPCPP before 3.2.0 allows remote attackers to obtain sensitive information (uninitialized heap memory) or cause a denial of service (out-of-bounds read) via a crafted packet, as demonstrated by…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2223
|
2024-11-21 10:51 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291170
|
- |
|
wernerd
|
zrtpcpp
|
Multiple stack-based buffer overflows in GNU ZRTPCPP before 3.2.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ZRTP Hello packet to th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2222
|
2024-11-21 10:51 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
