|
290111
|
- |
|
redhat
theforeman
|
openstack
foreman
|
Multiple SQL injection vulnerabilities in app/models/concerns/host_common.rb in Foreman before 1.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) fqdn or (2) hostgroup paramet…
|
CWE-89
SQL Injection
|
CVE-2013-4386
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290112
|
- |
|
linux
|
linux_kernel
|
Memory leak in the __kvm_set_memory_region function in virt/kvm/kvm_main.c in the Linux kernel before 3.9 allows local users to cause a denial of service (memory consumption) by leveraging certain de…
|
CWE-399
Resource Management Errors
|
CVE-2013-4592
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290113
|
- |
|
linux
|
linux_kernel
|
Buffer overflow in the __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the Linux kernel before 3.7.2 allows local users to cause a denial of service (memory corruption and system crash) or p…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4591
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290114
|
7.0 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
Multiple stack-based buffer overflows in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel before 2.6.33, when CONFIG_IP_VS is used, allow local users to gain privileges by leveraging the CAP_NET_AD…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4588
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290115
|
- |
|
linux
|
linux_kernel
|
The ath9k_htc_set_bssid_mask function in drivers/net/wireless/ath/ath9k/htc_drv_main.c in the Linux kernel through 3.12 uses a BSSID masking approach to determine the set of MAC addresses on which a …
|
CWE-310
Cryptographic Issues
|
CVE-2013-4579
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290116
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
The udp6_ufo_fragment function in net/ipv6/udp_offload.c in the Linux kernel through 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly perform a certain size comparison before …
|
CWE-189
Numeric Errors
|
CVE-2013-4563
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290117
|
- |
|
collectiveaccess
|
pawtucket
providence
|
Cross-site scripting (XSS) vulnerability in CollectiveAccess Providence and Pawtucket before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4507
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290118
|
- |
|
reviewboard
|
review_board
|
Multiple cross-site scripting (XSS) vulnerabilities in Review Board 1.6.x before 1.6.21 and 1.7.x before 1.7.17 allow remote attackers to inject arbitrary web script or HTML via the (1) Branch field …
|
CWE-79
Cross-site Scripting
|
CVE-2013-4519
|
2024-11-21 10:55 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290119
|
- |
|
spip
|
spip
|
The Security Screen (_core_/securite/ecran_securite.php) before 1.1.8 for SPIP, as used in SPIP 3.0.x before 3.0.12, allows remote attackers to execute arbitrary PHP via the connect parameter.
|
CWE-94
Code Injection
|
CVE-2013-4557
|
2024-11-21 10:55 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290120
|
- |
|
spip
|
spip
|
Cross-site scripting (XSS) vulnerability in the author page (prive/formulaires/editer_auteur.php) in SPIP before 2.1.24 and 3.0.x before 3.0.12 allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2013-4556
|
2024-11-21 10:55 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
