|
290341
|
- |
|
linux
|
linux_kernel
|
The dgram_recvmsg function in net/ieee802154/dgram.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which al…
|
CWE-200
Information Exposure
|
CVE-2013-7281
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290342
|
- |
|
hansotools
|
hanso_player
|
Buffer overflow in HansoTools Hanso Player 2.1.0, 2.5.0, and earlier allows remote attackers to cause a denial of service (crash) via a long string in a .m3u file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7280
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290343
|
- |
|
anthony_mills
|
s3_video
|
Cross-site scripting (XSS) vulnerability in views/video-management/preview_video.php in the S3 Video plugin before 0.983 for WordPress allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7279
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290344
|
- |
|
naxtech
|
cms_afroditi
|
SQL injection vulnerability in Naxtech CMS Afroditi 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to default.asp.
|
CWE-89
SQL Injection
|
CVE-2013-7278
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290345
|
- |
|
aphpkb
|
aphpkb
|
Multiple cross-site scripting (XSS) vulnerabilities in Andy's PHP Knowledgebase (Aphpkb) before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP Referer header to…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7277
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290346
|
- |
|
recommend_to_a_friend_project
|
recommend_to_a_friend
|
Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the Recommend to a friend plugin 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the current_url…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7276
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290347
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in misc.php in MyBB (aka MyBulletinBoard) before 1.6.12 allows remote attackers to inject arbitrary web script or HTML via the editor parameter in a smilie li…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7275
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290348
|
- |
|
wallpaperscript
|
wallpaperscript
|
Cross-site scripting (XSS) vulnerability in Wallpaper Script 3.5.0082 allows remote authenticated users to inject arbitrary web script or HTML via the title field in a wallpaper file upload.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7274
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290349
|
- |
|
7mediaws
|
edutrac
|
Directory traversal vulnerability in 7 Media Web Solutions eduTrac before 1.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the showmask parameter to installer/overview.php.
|
CWE-22
Path Traversal
|
CVE-2013-7097
|
2024-11-21 11:00 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290350
|
- |
|
linux
|
linux_kernel
|
The x25_recvmsg function in net/x25/af_x25.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows loc…
|
CWE-20
Improper Input Validation
|
CVE-2013-7271
|
2024-11-21 11:00 |
2014-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
