|
291471
|
- |
|
oracle
mysql
|
mysql
|
Buffer overflow in yaSSL, as used in MySQL 5.1.x before 5.1.68 and 5.5.x before 5.5.30, has unspecified impact and attack vectors, a different vulnerability than CVE-2012-0553.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1492
|
2024-11-21 10:49 |
2013-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291472
|
- |
|
symantec
|
enterprise_vault_for_file_system_archiving
|
Multiple unquoted Windows search path vulnerabilities in the (1) File Collector and (2) File PlaceHolder services in Symantec Enterprise Vault (EV) for File System Archiving before 9.0.4 and 10.x bef…
|
NVD-CWE-Other
|
CVE-2013-1609
|
2024-11-21 10:49 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291473
|
- |
|
symantec
|
netbackup_appliance
|
Directory traversal vulnerability in the Management Console on the Symantec NetBackup (NBU) appliance 2.0.x allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2013-1608
|
2024-11-21 10:49 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291474
|
- |
|
cisco
|
ios_xr
|
The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to cause a denial of service (process restart) via crafted TE packets, aka Bug ID CSCue04000.
|
CWE-20
Improper Input Validation
|
CVE-2013-1162
|
2024-11-21 10:49 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291475
|
- |
|
cisco
|
jabber_im
|
The XML parser in the Cisco Jabber IM application for Android allows remote authenticated users to cause a denial of service (blocked connection) by leveraging an entry on a Buddy list and sending a …
|
CWE-20
Improper Input Validation
|
CVE-2013-1161
|
2024-11-21 10:49 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291476
|
- |
|
lighttpd
|
lighttpd
|
The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local users to hijack the PHP con…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1427
|
2024-11-21 10:49 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291477
|
- |
|
oracle
|
support_tools
|
asr in Oracle Auto Service Request in Oracle Support Tools before 4.3.2 allows local users to modify arbitrary files via a symlink attack on a predictable filename in /tmp.
|
CWE-59
Link Following
|
CVE-2013-1495
|
2024-11-21 10:49 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291478
|
- |
|
piwigo
|
piwigo
|
Cross-site request forgery (CSRF) vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create …
|
CWE-352
Origin Validation Error
|
CVE-2013-1468
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291479
|
- |
|
fusionforge
|
fusionforge
|
(1) contrib/gforge-3.0-cronjobs.patch, (2) cronjobs/homedirs.php, (3) deb-specific/fileforge.pl, (4) deb-specific/group_dump_update.pl, (5) deb-specific/ssh_dump_update.pl, (6) deb-specific/user_dump…
|
CWE-59
Link Following
|
CVE-2013-1423
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291480
|
- |
|
piwigo
|
piwigo
|
Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter.
|
CWE-22
Path Traversal
|
CVE-2013-1469
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
