|
290011
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in misc.php in MyBB (aka MyBulletinBoard) before 1.6.12 allows remote attackers to inject arbitrary web script or HTML via the editor parameter in a smilie li…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7275
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290012
|
- |
|
wallpaperscript
|
wallpaperscript
|
Cross-site scripting (XSS) vulnerability in Wallpaper Script 3.5.0082 allows remote authenticated users to inject arbitrary web script or HTML via the title field in a wallpaper file upload.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7274
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290013
|
- |
|
7mediaws
|
edutrac
|
Directory traversal vulnerability in 7 Media Web Solutions eduTrac before 1.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the showmask parameter to installer/overview.php.
|
CWE-22
Path Traversal
|
CVE-2013-7097
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290014
|
- |
|
linux
|
linux_kernel
|
The x25_recvmsg function in net/x25/af_x25.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows loc…
|
CWE-20
Improper Input Validation
|
CVE-2013-7271
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290015
|
- |
|
linux
|
linux_kernel
|
The packet_recvmsg function in net/packet/af_packet.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure has been initialized, which al…
|
CWE-20
Improper Input Validation
|
CVE-2013-7270
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290016
|
- |
|
linux
|
linux_kernel
|
The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allow…
|
CWE-20
Improper Input Validation
|
CVE-2013-7269
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290017
|
- |
|
linux
|
linux_kernel
|
The ipx_recvmsg function in net/ipx/af_ipx.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows loc…
|
CWE-20
Improper Input Validation
|
CVE-2013-7268
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290018
|
- |
|
linux
|
linux_kernel
|
The atalk_recvmsg function in net/appletalk/ddp.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allow…
|
CWE-20
Improper Input Validation
|
CVE-2013-7267
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290019
|
- |
|
linux
|
linux_kernel
|
The mISDN_sock_recvmsg function in drivers/isdn/mISDN/socket.c in the Linux kernel before 3.12.4 does not ensure that a certain length value is consistent with the size of an associated data structur…
|
CWE-20
Improper Input Validation
|
CVE-2013-7266
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290020
|
- |
|
linux
|
linux_kernel
|
The pn_recvmsg function in net/phonet/datagram.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure has been initialized, which allows …
|
CWE-20
Improper Input Validation
|
CVE-2013-7265
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
