|
293421
|
- |
|
huawei
|
ar_19\/29\/49
ar_18-2x
ar_18-3x
ar_28\/46
ar_18-1x
s2300
s8500
s3300hi
s3500
s5100
s3000
s5600
s3900
s3300
s3700
s2700
s7800
s2000
|
The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6570
|
2024-11-21 10:46 |
2013-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293422
|
- |
|
huawei
|
ar_19\/29\/49
ar_18-2x
ar_18-3x
ar_28\/46
ar_18-1x
s2300
s8500
s3300hi
s3500
s5100
s3000
s5600
s3900
s3300
s3700
s2700
s7800
s2000
|
Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S56…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6569
|
2024-11-21 10:46 |
2013-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293423
|
- |
|
huawei
|
utps
|
Buffer overflow in the back-end component in Huawei UTPS 1.0 allows local users to gain privileges via a long IDS_PLUGIN_NAME string in a plug-in configuration file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6568
|
2024-11-21 10:46 |
2013-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293424
|
- |
|
project-redcap
|
redcap
|
REDCap before 4.14.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the logic of a custom rule.
|
CWE-20
Improper Input Validation
|
CVE-2012-6567
|
2024-11-21 10:46 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293425
|
- |
|
vanderbilt
|
redcap
|
Cross-site scripting (XSS) vulnerability in REDCap before 4.14.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6566
|
2024-11-21 10:46 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293426
|
- |
|
vanderbilt
|
redcap
|
Cross-site scripting (XSS) vulnerability in REDCap before 4.14.3 allows remote authenticated users to inject arbitrary web script or HTML via uppercase characters in JavaScript events within user-def…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6565
|
2024-11-21 10:46 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293427
|
- |
|
vanderbilt
|
redcap
|
Cross-site scripting (XSS) vulnerability in REDCap before 4.14.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6564
|
2024-11-21 10:46 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293428
|
- |
|
faircom
|
c-treeace
|
The Data Camouflage (aka FairCom Standard Encryption) algorithm in FairCom c-treeACE does not ensure that a decryption key is needed for accessing database contents, which allows context-dependent at…
|
CWE-310
Cryptographic Issues
|
CVE-2013-0148
|
2024-11-21 10:46 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293429
|
- |
|
qnap
|
viostor_network_video_recorder
|
Cross-site request forgery (CSRF) vulnerability in cgi-bin/create_user.cgi on QNAP VioStor NVR devices with firmware 4.0.3 allows remote attackers to hijack the authentication of administrators for r…
|
CWE-352
Origin Validation Error
|
CVE-2013-0144
|
2024-11-21 10:46 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293430
|
- |
|
qnap
|
viostor_network_video_recorder
surveillance_station_pro
nas
|
cgi-bin/pingping.cgi on QNAP VioStor NVR devices with firmware 4.0.3, and in the Surveillance Station Pro component in QNAP NAS, allows remote authenticated users to execute arbitrary commands by lev…
|
CWE-94
Code Injection
|
CVE-2013-0143
|
2024-11-21 10:46 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
