|
291561
|
9.1 |
CRITICAL
Network
|
telecomsoftware
|
samwin_contact_center
samwin_agent
|
A vulnerability was found in Telecommunication Software SAMwin Contact Center Suite 5.1. It has been rated as critical. Affected by this issue is the function getCurrentDBVersion in the library SAMwi…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2013-10002
|
2024-11-21 10:48 |
2022-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291562
|
5.9 |
MEDIUM
Network
|
htc
|
mail
|
A vulnerability was found in HTC One/Sense 4.x. It has been rated as problematic. Affected by this issue is the certification validation of the mail client. An exploit has been disclosed to the publi…
|
CWE-295
Improper Certificate Validation
|
CVE-2013-10001
|
2024-11-21 10:48 |
2022-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291563
|
6.5 |
MEDIUM
Network
|
canonical
|
unity-firefox-extension
ubuntu_linux
|
The unity-firefox-extension package could be tricked into destroying the Unity webapps context, causing Firefox to crash. This could be achieved by spinning the event loop inside the webapps initiali…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2013-1054
|
2024-11-21 10:48 |
2021-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291564
|
4.3 |
MEDIUM
Network
|
canonical
|
unity-firefox-extension
ubuntu_linux
|
The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an ac…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2013-1055
|
2024-11-21 10:48 |
2021-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291565
|
5.5 |
MEDIUM
Local
|
canonical
|
remote-login-service
|
In crypt.c of remote-login-service, the cryptographic algorithm used to cache usernames and passwords is insecure. An attacker could use this vulnerability to recover usernames and passwords from the…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2013-1053
|
2024-11-21 10:48 |
2021-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291566
|
9.8 |
CRITICAL
Network
|
polarbear_cms_project
|
polarbear_cms
|
A PHP File Upload Vulnerability exists in PolarBear CMS 2.5 via upload.php, which could let a malicious user execute arbitrary code.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2013-0803
|
2024-11-21 10:48 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291567
|
6.1 |
MEDIUM
Network
|
chamilo
|
chamilo
|
Chamilo 1.9.4 has XSS due to improper validation of user-supplied input by the chat.php script.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0739
|
2024-11-21 10:48 |
2020-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291568
|
6.1 |
MEDIUM
Network
|
chamilo
|
chamilo
|
Chamilo 1.9.4 has Multiple XSS and HTML Injection Vulnerabilities: blog.php and announcements.php.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0738
|
2024-11-21 10:48 |
2020-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291569
|
7.8 |
HIGH
Local
|
hexagongeospatial
|
erdas_er_viewer
|
ERDAS ER Viewer 13.0 has dwmapi.dll and irml.dll libraries arbitrary code execution vulnerabilities
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2013-0725
|
2024-11-21 10:48 |
2020-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291570
|
6.1 |
MEDIUM
Network
|
boltwire
|
boltwire
|
Cross-site scripting (XSS) vulnerability in BoltWire 3.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the fieldnames parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0737
|
2024-11-21 10:48 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
