|
291211
|
- |
|
sap
|
j2ee_engine
|
Unspecified vulnerability in the configuration service in SAP J2EE Engine allows remote attackers to obtain credential information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-7357
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291212
|
- |
|
sap
|
ccms_\/_database_monitor
|
Unspecified vulnerability in the SAP CCMS / Database Monitors for Oracle allows attackers to obtain the database password via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-7356
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291213
|
- |
|
sap
|
bi_universal_data_integration
|
SQL injection vulnerability in SAP BI Universal Data Integration allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to the J2EE schema.
|
CWE-89
SQL Injection
|
CVE-2013-7355
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291214
|
- |
|
b2evolution
|
b2evolution
|
Cross-site request forgery (CSRF) vulnerability in blogs/admin.php in b2evolution before 4.1.7 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL inj…
|
CWE-352
Origin Validation Error
|
CVE-2013-7352
|
2024-11-21 11:00 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291215
|
- |
|
checkpoint
|
security_gateway
|
Multiple unspecified vulnerabilities in Check Point Security Gateway 80 R71.x before R71.45 (730159141) and R75.20.x before R75.20.4 and 600 and 1100 appliances R75.20.x before R75.20.42 have unknown…
|
NVD-CWE-noinfo
|
CVE-2013-7350
|
2024-11-21 11:00 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291216
|
- |
|
linux
|
linux_kernel
|
Double free vulnerability in the ioctx_alloc function in fs/aio.c in the Linux kernel before 3.12.4 allows local users to cause a denial of service (system crash) or possibly have unspecified other i…
|
CWE-399
Resource Management Errors
|
CVE-2013-7348
|
2024-11-21 11:00 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291217
|
- |
|
raoul_proenca
|
gnew
|
Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the (1) news_id parameter to news/send.php, (2) thread_id parameter to posts/edit.ph…
|
CWE-89
SQL Injection
|
CVE-2013-7349
|
2024-11-21 11:00 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291218
|
- |
|
redhat
|
conga
enterprise_linux
|
Luci in Red Hat Conga does not properly enforce the user session timeout, which might allow attackers to gain access to the session by reading the __ac session cookie. NOTE: this issue has been SPLI…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7347
|
2024-11-21 11:00 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291219
|
- |
|
getsymphony
|
symphony
|
Cross-site request forgery (CSRF) vulnerability in Symphony CMS before 2.3.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via…
|
CWE-352
Origin Validation Error
|
CVE-2013-7346
|
2024-11-21 11:00 |
2014-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291220
|
- |
|
linux
|
linux_kernel
|
The rds_ib_laddr_check function in net/rds/ib.c in the Linux kernel before 3.12.8 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecif…
|
CWE-476
NULL Pointer Dereference
|
CVE-2013-7339
|
2024-11-21 11:00 |
2014-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
