|
290651
|
- |
|
brother
|
mfc-9970cdw_firmware
mfc-9970cdw
|
Multiple cross-site scripting (XSS) vulnerabilities in the Brother MFC-9970CDW printer with firmware L (1.10) allow remote attackers to inject arbitrary web script or HTML via the (1) id or (2) val p…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2671
|
2024-11-21 10:52 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290652
|
- |
|
brother
|
mfc-9970cdw_firmware
mfc-9970cdw
|
Cross-site scripting (XSS) vulnerability in the Brother MFC-9970CDW printer with firmware G (1.03) and L (1.10) allows remote attackers to inject arbitrary web script or HTML via an arbitrary paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2670
|
2024-11-21 10:52 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290653
|
- |
|
umi-cms
|
umi.cms
|
Cross-site request forgery (CSRF) vulnerability in Umisoft UMI.CMS before 2.9 build 21905 allows remote attackers to hijack the authentication of administrators for requests that add administrator ac…
|
CWE-352
Origin Validation Error
|
CVE-2013-2754
|
2024-11-21 10:52 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290654
|
- |
|
schneider-electric
|
powerlogic_scada
struxureware_scada_expert_vijeo_citect
struxureware_powerscada_expert
citectscada
|
Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 through 7.30SP1, CitectSCADA 7.20 through 7.30SP1, StruxureWare PowerSCADA Expert 7.30 through 7.30SR1, and PowerLogi…
|
NVD-CWE-Other
|
CVE-2013-2824
|
2024-11-21 10:52 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290655
|
- |
|
mitsubishielectric
|
mc-worx_suite
|
An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction…
|
CWE-94
Code Injection
|
CVE-2013-2817
|
2024-11-21 10:52 |
2014-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290656
|
- |
|
matrikonopc
|
scada_dnp3_opc_server
|
MatrikonOPC SCADA DNP3 OPC Server 1.2.2.0 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed DNP3 packet.
|
CWE-20
Improper Input Validation
|
CVE-2013-2829
|
2024-11-21 10:52 |
2014-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290657
|
- |
|
atmail
|
atmail
|
Cross-site scripting (XSS) vulnerability in Atmail Webmail Server 6.6.x before 6.6.3 and 7.0.x before 7.0.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.p…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2585
|
2024-11-21 10:52 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290658
|
- |
|
ctera
|
cloud_storage_os
|
Cross-site scripting (XSS) vulnerability in CTERA Cloud Storage OS before 3.2.29.0, 3.2.42.0, and earlier allows remote attackers to inject arbitrary web script or HTML via the description in a proje…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2639
|
2024-11-21 10:52 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290659
|
- |
|
ibm
|
websphere_transformation_extender
|
Buffer overflow in the Launcher in IBM WebSphere Transformation Extender 8.4.x before 8.4.0.4 allows local users to cause a denial of service (process crash or Admin Console command-stream outage) vi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2962
|
2024-11-21 10:52 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290660
|
- |
|
jetaudio
|
jetaudio
|
Stack-based buffer overflow in the JetMPG.ax module in jetAudio 8.0.17 allows remote attackers to execute arbitrary code via a crafted MPEG2-TS video file, related to the MPEG2 transport stream.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2691
|
2024-11-21 10:52 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
