|
291621
|
- |
|
gnome
|
librsvg
|
GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML Ext…
|
CWE-20
Improper Input Validation
|
CVE-2013-1881
|
2024-11-21 10:50 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291622
|
- |
|
openstack
|
python-keystoneclient
|
The user-password-update command in python-keystoneclient before 0.2.4 accepts the new password in the --password argument, which allows local users to obtain sensitive information by listing the pro…
|
CWE-200
Information Exposure
|
CVE-2013-2013
|
2024-11-21 10:50 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291623
|
- |
|
mongodb
redhat
|
mongodb
enterprise_mrg
|
MongoDB before 2.0.9 and 2.2.x before 2.2.4 does not properly validate requests to the nativeHelper function in SpiderMonkey, which allows remote authenticated users to cause a denial of service (inv…
|
CWE-20
Improper Input Validation
|
CVE-2013-1892
|
2024-11-21 10:50 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291624
|
- |
|
squid-cache
|
squid
|
The strHdrAcptLangGetItem function in errorpage.cc in Squid 3.2.x before 3.2.9 and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a ",…
|
CWE-20
Improper Input Validation
|
CVE-2013-1839
|
2024-11-21 10:50 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291625
|
- |
|
redhat
|
cloudforms_management_engine
|
Multiple directory traversal vulnerabilities in the AgentController in Red Hat CloudForms Management Engine 2.0 allow remote attackers to create and overwrite arbitrary files via a .. (dot dot) in th…
|
CWE-22
Path Traversal
|
CVE-2013-2068
|
2024-11-21 10:50 |
2013-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291626
|
- |
|
redhat
|
jboss_enterprise_application_platform
|
PicketBox, as used in Red Hat JBoss Enterprise Application Platform before 6.1.1, allows local users to obtain the admin encryption key by reading the Vault data file.
|
CWE-310
Cryptographic Issues
|
CVE-2013-1921
|
2024-11-21 10:50 |
2013-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291627
|
- |
|
mozilla
|
seamonkey
thunderbird
firefox
|
Use-after-free vulnerability in the JS_GetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary …
|
CWE-399
Resource Management Errors
|
CVE-2013-1738
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291628
|
- |
|
mozilla
|
thunderbird_esr
seamonkey
firefox
thunderbird
|
Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey before 2.21 do not properly identify the "this" object during u…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1737
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291629
|
- |
|
mozilla
|
seamonkey
firefox
thunderbird
thunderbird_esr
|
The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey before 2.21 allows…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1736
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291630
|
- |
|
mozilla
|
firefox
thunderbird_esr
seamonkey
thunderbird
|
Use-after-free vulnerability in the mozilla::layout::ScrollbarActivity function in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17…
|
CWE-20
Improper Input Validation
|
CVE-2013-1735
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
