|
291231
|
- |
|
ipcop
|
ipcop
|
cgi-bin/iptablesgui.cgi in IPCop (aka IPCop Firewall) before 2.1.5 allows remote authenticated users to execute arbitrary code via shell metacharacters in the TABLE parameter. NOTE: this can be expl…
|
CWE-77
Command Injection
|
CVE-2013-7418
|
2024-11-21 11:00 |
2015-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291232
|
- |
|
ipcop
|
ipcop
|
Cross-site scripting (XSS) vulnerability in cgi-bin/ipinfo.cgi in IPCop (aka IPCop Firewall) before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING. NOTE: t…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7417
|
2024-11-21 11:00 |
2015-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291233
|
- |
|
c-icap_project
|
c-icap
|
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by us…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7401
|
2024-11-21 11:00 |
2014-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291234
|
- |
|
c-icap_project
|
c-icap
|
Multiple unspecified vulnerabilities in request.c in c-icap 0.2.x allow remote attackers to cause a denial of service (crash) via a crafted ICAP request.
|
NVD-CWE-noinfo
|
CVE-2013-7402
|
2024-11-21 11:00 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291235
|
- |
|
canto
|
canto_curses
|
canto_curses/guibase.py in Canto Curses before 0.9.0 allows remote feed servers to execute arbitrary commands via shell metacharacters in a URL in a feed.
|
CWE-77
Command Injection
|
CVE-2013-7416
|
2024-11-21 11:00 |
2014-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291236
|
- |
|
axway
|
securetransport
|
Cross-site request forgery (CSRF) vulnerability in Axway SecureTransport 5.1 SP2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that upload arbitra…
|
CWE-352
Origin Validation Error
|
CVE-2013-7057
|
2024-11-21 11:00 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291237
|
- |
|
allplayer
|
allplayer
|
Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .m3u (playlist) file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7409
|
2024-11-21 11:00 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291238
|
- |
|
f5
|
big-ip_analytics
|
F5 BIG-IP Analytics 11.x before 11.4.0 uses a predictable session cookie, which makes it easier for remote attackers to have unspecified impact by guessing the value.
|
CWE-310
Cryptographic Issues
|
CVE-2013-7408
|
2024-11-21 11:00 |
2014-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291239
|
- |
|
drupal
|
mrbs_module
|
Cross-site request forgery (CSRF) vulnerability in the MRBS module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2013-7407
|
2024-11-21 11:00 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291240
|
- |
|
mrbs_project
|
mrbs
|
SQL injection vulnerability in the MRBS module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-7406
|
2024-11-21 11:00 |
2014-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
