|
290271
|
- |
|
openstack
|
compute
havana
grizzly
icehouse
|
The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and Icehouse, when using KVM live block migration, does not prope…
|
CWE-200
Information Exposure
|
CVE-2013-7130
|
2024-11-21 11:00 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290272
|
- |
|
d-link
|
dap_2253_firmware
dap_2253
|
Cross-site scripting (XSS) vulnerability in D-Link DAP-2253 Access Point (Rev. A1) with firmware before 1.30 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7321
|
2024-11-21 11:00 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290273
|
- |
|
d-link
|
dap_2253_firmware
dap_2253
|
Cross-site request forgery (CSRF) vulnerability in D-Link DAP-2253 Access Point (Rev. A1) with firmware before 1.30 allows remote attackers to hijack the authentication of administrators for requests…
|
CWE-352
Origin Validation Error
|
CVE-2013-7320
|
2024-11-21 11:00 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290274
|
- |
|
wpdownloadmanager
|
wordpress_download_manager
|
Cross-site scripting (XSS) vulnerability in the Download Manager plugin before 2.5.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the title field.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7319
|
2024-11-21 11:00 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290275
|
- |
|
seowonintech
|
swc-9100
|
cgi-bin/reboot.cgi on Seowon Intech SWC-9100 routers allows remote attackers to (1) cause a denial of service (reboot) via a default_reboot action or (2) reset all configuration values via a factory_…
|
CWE-287
Improper Authentication
|
CVE-2013-7183
|
2024-11-21 11:00 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290276
|
- |
|
fortinet
|
fortios
|
Cross-site scripting (XSS) vulnerability in firewall/schedule/recurrdlg in Fortinet FortiOS 5.0.5 allows remote attackers to inject arbitrary web script or HTML via the mkey parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7182
|
2024-11-21 11:00 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290277
|
- |
|
fortinet
|
fortiweb
|
Cross-site scripting (XSS) vulnerability in user/ldap_user/add in Fortinet FortiOS 5.0.3 allows remote attackers to inject arbitrary web script or HTML via the filter parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7181
|
2024-11-21 11:00 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290278
|
- |
|
seowonintech
|
swc-9100
|
The ping functionality in cgi-bin/diagnostic.cgi on Seowon Intech SWC-9100 routers allows remote attackers to execute arbitrary commands via shell metacharacters in the ping_ipaddr parameter.
|
CWE-20
Improper Input Validation
|
CVE-2013-7179
|
2024-11-21 11:00 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290279
|
- |
|
craig_drummond
|
cantata
|
Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by reading the songs in the queue.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7301
|
2024-11-21 11:00 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290280
|
- |
|
craig_drummond
|
cantata
|
Absolute path traversal vulnerability in cantata before 1.2.2 allows local users to read arbitrary files via a full pathname in a request to the internal httpd server. NOTE: this vulnerability can b…
|
CWE-22
Path Traversal
|
CVE-2013-7300
|
2024-11-21 11:00 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
