|
291261
|
- |
|
algosec
|
firewall_analyzer
|
Cross-site scripting (XSS) vulnerability in BusinessFlow/login in AlgoSec Firewall Analyzer 6.4 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7318
|
2024-11-21 11:00 |
2014-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291262
|
- |
|
detlef_pilzecker
|
proc\
|
The Proc::Daemon module 0.14 for Perl uses world-writable permissions for a file that stores a process ID, which allows local users to have an unspecified impact by modifying this file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7135
|
2024-11-21 11:00 |
2014-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291263
|
- |
|
tntnet
|
tntnet
|
framework/common/messageheaderparser.cpp in Tntnet before 2.2.1 allows remote attackers to obtain sensitive information via a header that ends in \n instead of \r\n, which prevents a null terminator …
|
CWE-200
Information Exposure
|
CVE-2013-7299
|
2024-11-21 11:00 |
2014-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291264
|
- |
|
tntnet
|
cxxtools
|
query_params.cpp in cxxtools before 2.2.1 allows remote attackers to cause a denial of service (infinite recursion and crash) via an HTTP query that contains %% (double percent) characters.
|
CWE-399
Resource Management Errors
|
CVE-2013-7298
|
2024-11-21 11:00 |
2014-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291265
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.4.1 allows remote attackers to inject arbitrary web script or HTML via the title in a mail filter rule.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7143
|
2024-11-21 11:00 |
2014-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291266
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified oAuth API functions.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7142
|
2024-11-21 11:00 |
2014-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291267
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to crafted "<%"…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7141
|
2024-11-21 11:00 |
2014-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291268
|
- |
|
open-xchange
|
open-xchange_appsuite
|
XML External Entity (XXE) vulnerability in the CalDAV interface in Open-Xchange (OX) AppSuite 7.4.1 and earlier allows remote authenticated users to read portions of arbitrary files via vectors relat…
|
NVD-CWE-Other
|
CVE-2013-7140
|
2024-11-21 11:00 |
2014-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291269
|
- |
|
freedesktop
|
poppler
|
The JBIG2Stream::readSegments method in JBIG2Stream.cc in Poppler before 0.24.5 does not use the correct specifier within a format string, which allows context-dependent attackers to cause a denial o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7296
|
2024-11-21 11:00 |
2014-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291270
|
- |
|
franklinfueling
|
ts-550_evo_firmware
ts-550_evo
|
Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions before 2.4.0 has a hardcoded password for the roleDiag account, which allows remote attackers to gain root privileges, …
|
CWE-255
Credentials Management
|
CVE-2013-7248
|
2024-11-21 11:00 |
2014-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
