|
295471
|
- |
|
openvpn
|
openvpn_access_server
|
Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2013-2692
|
2024-11-21 10:52 |
2014-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295472
|
- |
|
netgear
|
wndr4700_firmware
wndr4700
|
Multiple cross-site scripting (XSS) vulnerabilities in NETGEAR WNDR4700 with firmware 1.0.0.34 allow remote authenticated users to inject arbitrary web script or HTML via the (1) UserName or (2) Pass…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3069
|
2024-11-21 10:52 |
2014-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295473
|
- |
|
osisoft
|
pi_interface
|
The DNP Master Driver in the OSIsoft PI Interface before 3.1.2.54 for DNP3 allows physically proximate attackers to cause a denial of service (interface shutdown) via crafted input over a serial line.
|
CWE-20
Improper Input Validation
|
CVE-2013-2828
|
2024-11-21 10:52 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295474
|
- |
|
osisoft
|
pi_interface
|
The DNP Master Driver in the OSIsoft PI Interface before 3.1.2.54 for DNP3 allows remote attackers to cause a denial of service (interface shutdown) via a crafted TCP packet.
|
CWE-20
Improper Input Validation
|
CVE-2013-2809
|
2024-11-21 10:52 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295475
|
- |
|
snilesh
|
content_slide
|
Cross-site request forgery (CSRF) vulnerability in the Content Slide plugin 1.4.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change plugin …
|
CWE-352
Origin Validation Error
|
CVE-2013-2708
|
2024-11-21 10:52 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295476
|
- |
|
rodrigo_polo
|
stream_video_player
|
Cross-site request forgery (CSRF) vulnerability in the Stream Video Player plugin 1.4.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change p…
|
CWE-352
Origin Validation Error
|
CVE-2013-2706
|
2024-11-21 10:52 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295477
|
- |
|
underconstruction_project
|
underconstruction
|
Cross-site request forgery (CSRF) vulnerability in the underConstruction plugin before 1.09 for WordPress allows remote attackers to hijack the authentication of administrators for requests that deac…
|
CWE-352
Origin Validation Error
|
CVE-2013-2699
|
2024-11-21 10:52 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295478
|
- |
|
wp-plugins
|
wp-print
|
Cross-site request forgery (CSRF) vulnerability in the Options in the WP-Print plugin before 2.52 for WordPress allows remote attackers to hijack the authentication of administrators for requests tha…
|
CWE-352
Origin Validation Error
|
CVE-2013-2693
|
2024-11-21 10:52 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295479
|
- |
|
b2evolution
|
b2evolution
|
SQL injection vulnerability in blogs/admin.php in b2evolution before 4.1.7 allows remote authenticated administrators to execute arbitrary SQL commands via the show_statuses[] parameter. NOTE: this …
|
CWE-89
SQL Injection
|
CVE-2013-2945
|
2024-11-21 10:52 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295480
|
- |
|
wpsymposiumpro
|
wp_symposium
|
Cross-site scripting (XSS) vulnerability in invite.php in the WP Symposium plugin before 13.04 for WordPress allows remote attackers to inject arbitrary web script or HTML via the u parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-2695
|
2024-11-21 10:52 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
