|
290121
|
- |
|
debian
canonical
haxx
|
debian_linux
ubuntu_linux
libcurl
|
The GnuTLS backend in libcurl 7.21.4 through 7.33.0, when disabling digital signature verification (CURLOPT_SSL_VERIFYPEER), also disables the CURLOPT_SSL_VERIFYHOST check for CN or SAN host name fie…
|
CWE-20
Improper Input Validation
|
CVE-2013-6422
|
2024-11-21 10:59 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290122
|
- |
|
ibm
|
security_access_manager_for_enterprise_single_sign-on
|
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to inject arbit…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6745
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290123
|
- |
|
ibm
|
websphere_portal
|
IBM WebSphere Portal 6.0.0.x through 6.0.0.1, 6.0.1.x through 6.0.1.7, 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.0.x through 8.0.0.1 CF08 allow…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6735
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290124
|
- |
|
ibm
|
websphere_portal
|
IBM WebSphere Portal 8.0.0.1 before CF09 does not properly handle references in compute="always" Web Content Manager (WCM) navigator components, which allows remote attackers to obtain sensitive comp…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6723
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290125
|
- |
|
ibm
|
websphere_portal
|
Cross-site scripting (XSS) vulnerability in the Web Content Manager (WCM) UI in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6328
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290126
|
- |
|
quickheal
|
antivirus_pro
|
Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users to execute arbitrary code or cause a denial of service (process crash) via a long *.text value in a PE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6767
|
2024-11-21 10:59 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290127
|
- |
|
realnetworks
|
realplayer
|
Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TR…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6877
|
2024-11-21 10:59 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290128
|
- |
|
ibm
|
db2_connect
db2
db2_purescale_feature_9.8
|
The OLAP query engine in IBM DB2 and DB2 Connect 9.7 through FP9, 9.8 through FP5, 10.1 through FP3, and 10.5 through FP2, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remo…
|
NVD-CWE-noinfo
|
CVE-2013-6717
|
2024-11-21 10:59 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290129
|
- |
|
no-margin-for-errors
|
prettyphoto
|
Cross-site scripting (XSS) vulnerability in the setTimeout function in js/jquery.prettyPhoto.js in prettyPhoto 3.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via a c…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6837
|
2024-11-21 10:59 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290130
|
- |
|
gnome
|
gnumeric
|
Heap-based buffer overflow in the ms_escher_get_data function in plugins/excel/ms-escher.c in GNOME Office Gnumeric before 1.12.9 allows remote attackers to cause a denial of service (crash) via a cr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6836
|
2024-11-21 10:59 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
