|
291631
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
The nsHtml5TreeBuilder::resetTheInsertionMode function in the HTML5 Tree Builder in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 does not properly maintain the stat…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1720
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291632
|
- |
|
mozilla
|
thunderbird
seamonkey
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allow remote attackers to cause a denial of service (memo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1719
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291633
|
- |
|
mozilla
|
thunderbird_esr
thunderbird
seamonkey
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey b…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1718
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291634
|
- |
|
redhat
apple
php
|
enterprise_linux
mac_os_x
php
|
The SOAP parser in PHP before 5.3.22 and 5.4.x before 5.4.12 allows remote attackers to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an …
|
CWE-611
XXE
|
CVE-2013-1824
|
2024-11-21 10:50 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291635
|
- |
|
open-xchange
|
open-xchange_server
|
OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spo…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1651
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291636
|
- |
|
open-xchange
|
open-xchange_server
|
Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 uses weak permissions (group "other" readable) under opt/open-xchange/etc/, which allows local users to obtain se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1650
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291637
|
- |
|
open-xchange
|
open-xchange_server
|
Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 uses the crypt and SHA-1 algorithms for password hashing, which makes it easier for context-dependent attackers t…
|
CWE-255
Credentials Management
|
CVE-2013-1649
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291638
|
- |
|
open-xchange
|
open-xchange_server
|
The Subscriptions feature in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not properly validate the publication-source URL, which allows remote authentic…
|
CWE-20
Improper Input Validation
|
CVE-2013-1648
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291639
|
- |
|
open-xchange
|
open-xchange_server
|
Multiple CRLF injection vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary HTTP headers and conduct HT…
|
CWE-94
Code Injection
|
CVE-2013-1647
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291640
|
- |
|
open-xchange
|
open-xchange_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1646
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
