|
290511
|
- |
|
sap
|
netweaver_logviewer
|
SAP NetWeaver Logviewer 6.30, when running on Windows, allows remote attackers to bypass intended access restrictions via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6818
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290512
|
- |
|
sap
|
network_interface_router
|
Heap-based buffer overflow in SAP Network Interface Router (SAProuter) 7.30 allows remote attackers to cause a denial of service and execute arbitrary code via crafted NI Route messages.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6817
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290513
|
- |
|
sap
|
netweaver
|
Multiple cross-site scripting (XSS) vulnerabilities in the (1) JavaDumpService and (2) DataCollector servlets in SAP NetWeaver allow remote attackers to inject arbitrary web script or HTML via unspec…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6816
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290514
|
- |
|
sap
|
netweaver
|
The J2EE Engine in SAP NetWeaver 6.40, 7.02, and earlier allows remote attackers to redirect users to arbitrary web sites, conduct phishing attacks, and obtain sensitive information (cookies and SAPP…
|
CWE-20
Improper Input Validation
|
CVE-2013-6814
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290515
|
- |
|
sap
|
netweaver
|
The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS ABAP) in SAP NetWeaver 7.31 and earlier allows remote attackers to cause a denial of service via unspecified vectors, related to a…
|
CWE-20
Improper Input Validation
|
CVE-2013-6815
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290516
|
- |
|
sunil_nanda
|
blue_wrench_video_widget
|
Cross-site request forgery (CSRF) vulnerability in bluewrench-video-widget.php in the Blue Wrench Video Widget plugin before 2.0.0 for WordPress allows remote attackers to hijack the authentication o…
|
CWE-352
Origin Validation Error
|
CVE-2013-6797
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290517
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote …
|
NVD-CWE-Other
|
CVE-2013-6631
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290518
|
- |
|
google
|
chrome
|
The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during t…
|
CWE-189
Numeric Errors
|
CVE-2013-6630
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290519
|
- |
|
google
oracle
artifex
libjpeg-turbo
fedoraproject
opensuse
canonical
debian
mozilla
|
chrome
solaris
gpl_ghostscript
libjpeg-turbo
fedora
opensuse
ubuntu_linux
debian_linux
firefox
seamonkey
thunderbird
firefox_esr
|
The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain dup…
|
CWE-200
Information Exposure
|
CVE-2013-6629
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290520
|
- |
|
google
|
chrome
|
Google Chrome before 31.0.1650.57 allows remote attackers to bypass intended sandbox restrictions by leveraging access to a renderer process, as demonstrated during a Mobile Pwn2Own competition at Pa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6802
|
2024-11-21 10:59 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
