|
293631
|
- |
|
user_relationships_project
|
user_relationships
|
Cross-site scripting (XSS) vulnerability in the User Relationships module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.0-alpha5 for Drupal allows remote authenticated users with the "administer us…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0225
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293632
|
- |
|
video_project
|
video
|
The Video module 7.x-2.x before 7.x-2.9 for Drupal, when using the FFmpeg transcoder, allows local users to execute arbitrary PHP code by modifying a temporary PHP file.
|
CWE-16
Configuration
|
CVE-2013-0224
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293633
|
- |
|
leighton_whiting
|
mark_complete
|
Cross-site request forgery (CSRF) vulnerability in the Mark Complete module 7.x-1.x before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown v…
|
CWE-352
Origin Validation Error
|
CVE-2013-0207
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293634
|
- |
|
guy_bedford
|
live_css
|
Unrestricted file upload vulnerability in the Live CSS module 6.x-2.x before 6.x-2.1 and 7.x-2.x before 7.x-2.7 for Drupal allows remote authenticated users with the "administer CSS" permissions to e…
|
NVD-CWE-Other
|
CVE-2013-0206
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293635
|
- |
|
restful_web_services_project
|
restful_web_services
|
Cross-site request forgery (CSRF) vulnerability in the RESTful Web Services (restws) module 7.x-1.x before 7.x-1.2 and 7.x-2.x before 7.x-2.0-alpha4 for Drupal allows remote attackers to hijack the a…
|
CWE-352
Origin Validation Error
|
CVE-2013-0205
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293636
|
- |
|
apache
|
commons_fileupload
|
The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for uploaded files, which allows local users to overwrite arbitrary f…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0248
|
2024-11-21 10:47 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293637
|
- |
|
ganglia
|
ganglia-web
|
Multiple cross-site scripting (XSS) vulnerabilities in Ganglia Web before 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0275
|
2024-11-21 10:47 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293638
|
- |
|
fedoraproject
|
389_directory_server
|
389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence.
|
CWE-189
Numeric Errors
|
CVE-2013-0312
|
2024-11-21 10:47 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293639
|
- |
|
adobe
|
flash_player
flash_player_for_android
adobe_air_sdk_and_compiler
adobe_air_sdk
adobe_air
|
Use-after-free vulnerability in Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.4…
|
CWE-399
Resource Management Errors
|
CVE-2013-0650
|
2024-11-21 10:47 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293640
|
- |
|
adobe
|
flash_player
flash_player_for_android
adobe_air_sdk_and_compiler
adobe_air_sdk
adobe_air
|
Integer overflow in Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 on Android…
|
CWE-189
Numeric Errors
|
CVE-2013-0646
|
2024-11-21 10:47 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
