|
291141
|
- |
|
monkey-project
|
monkey
|
Cross-site scripting (XSS) vulnerability in the Directory Listing plugin in Monkey HTTP Daemon (monkeyd) 1.2.2 allows attackers to inject arbitrary web script or HTML via a file name.
|
CWE-79
Cross-site Scripting
|
CVE-2013-2181
|
2024-11-21 10:51 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291142
|
- |
|
moodle
|
moodle
|
mod/feedback/lib.php in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 does not consider the mod/feedback:view capability before displaying…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2246
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291143
|
- |
|
moodle
|
moodle
|
rss/file.php in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 does not properly implement the use of RSS tokens for impersonation, which a…
|
CWE-287
Improper Authentication
|
CVE-2013-2245
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291144
|
- |
|
moodle
|
moodle
|
Multiple cross-site scripting (XSS) vulnerabilities in lib/conditionlib.php in Moodle 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allow remote attackers to inject arbitrary web script or HTML via the c…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2244
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291145
|
- |
|
moodle
|
moodle
|
mod/lesson/pagetypes/matching.php in Moodle through 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 allows remote authenticated users to obtain sensitive answer information by …
|
CWE-200
Information Exposure
|
CVE-2013-2243
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291146
|
- |
|
moodle
|
moodle
|
mod/chat/gui_sockets/index.php in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 does not consider the mod/chat:chat capability before auth…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2242
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291147
|
- |
|
hp
|
loadrunner
|
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1671.
|
NVD-CWE-noinfo
|
CVE-2013-2370
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291148
|
- |
|
hp
|
loadrunner
|
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1670.
|
NVD-CWE-noinfo
|
CVE-2013-2369
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291149
|
- |
|
hp
|
loadrunner
|
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to cause a denial of service via unknown vectors, aka ZDI-CAN-1669.
|
NVD-CWE-noinfo
|
CVE-2013-2368
|
2024-11-21 10:51 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291150
|
- |
|
apache
|
http_server
|
mod_session_dbd.c in the mod_session_dbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new ses…
|
NVD-CWE-noinfo
|
CVE-2013-2249
|
2024-11-21 10:51 |
2013-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
