|
292501
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication when a JGroups channel is started, which allows remote attackers to obtai…
|
CWE-287
Improper Authentication
|
CVE-2013-2102
|
2024-11-21 10:51 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292502
|
- |
|
quagga
|
quagga
|
Stack-based buffer overflow in the new_msg_lsa_change_notify function in the OSPFD API (ospf_api.c) in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allow…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2236
|
2024-11-21 10:51 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292503
|
- |
|
apache
|
org.apache.sling.servlets.post
|
The deepGetOrCreateNode function in impl/operations/AbstractCreateOperation.java in org.apache.sling.servlets.post.bundle 2.2.0 and 2.3.0 in Apache Sling does not properly handle a NULL value that re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2254
|
2024-11-21 10:51 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292504
|
- |
|
clutter_project
opensuse
|
clutter
opensuse
|
The translate_hierarchy_event function in x11/clutter-device-manager-xi2.c in Clutter, when resuming the system, does not properly handle XIQueryDevice errors when a device has "disappeared," which c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2190
|
2024-11-21 10:51 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292505
|
- |
|
ibm
|
business_process_monitor
|
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors, aka ZD…
|
NVD-CWE-noinfo
|
CVE-2013-2366
|
2024-11-21 10:51 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292506
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
cgi-bin/firmwareupgrade in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote attackers to modify the fir…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2581
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292507
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, all…
|
NVD-CWE-Other
|
CVE-2013-2580
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292508
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 have an empty password for the hardcoded "qmik" account, which allow…
|
CWE-255
Credentials Management
|
CVE-2013-2579
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292509
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote attackers to execute arbitr…
|
CWE-78
OS Command
|
CVE-2013-2578
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292510
|
- |
|
menalto
|
gallery
|
modules/gallery/helpers/data_rest.php in Gallery 3 before 3.0.9 allows remote attackers to bypass intended access restrictions and obtain sensitive information (image files) via the "full" string in …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2241
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
