|
292911
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 3.5.x before 3.5.8 and 4.x before 4.0.0-rc3, when a SaveDir directory is configured, allows remote authenticated users to execute arbitrary code by using a double extension in the filename…
|
CWE-94
Code Injection
|
CVE-2013-3239
|
2024-11-21 10:53 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292912
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 3.5.x before 3.5.8 and 4.x before 4.0.0-rc3 allows remote authenticated users to execute arbitrary code via a /e\x00 sequence, which is not properly handled before making a preg_replace fu…
|
NVD-CWE-noinfo
|
CVE-2013-3238
|
2024-11-21 10:53 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292913
|
- |
|
cybozu
|
cybozu_office
|
Cross-site request forgery (CSRF) vulnerability in Cybozu Office before 8.1.6 and 9.x before 9.3.0 allows remote attackers to hijack the authentication of arbitrary users for requests that change mob…
|
CWE-352
Origin Validation Error
|
CVE-2013-3269
|
2024-11-21 10:53 |
2013-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292914
|
- |
|
novell
|
imanager
|
Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after a logout action, which has unspecified impact and remote attack vectors.
|
CWE-287
Improper Authentication
|
CVE-2013-3268
|
2024-11-21 10:53 |
2013-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292915
|
- |
|
linux
|
linux_kernel
|
The vsock_stream_sendmsg function in net/vmw_vsock/af_vsock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive informatio…
|
CWE-200
Information Exposure
|
CVE-2013-3237
|
2024-11-21 10:53 |
2013-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292916
|
- |
|
linux
|
linux_kernel
|
The vmci_transport_dgram_dequeue function in net/vmw_vsock/vmci_transport.c in the Linux kernel before 3.9-rc7 does not properly initialize a certain length variable, which allows local users to obta…
|
CWE-200
Information Exposure
|
CVE-2013-3236
|
2024-11-21 10:53 |
2013-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292917
|
- |
|
linux
|
linux_kernel
|
net/tipc/socket.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure and a certain length variable, which allows local users to obtain sensitive information from kernel s…
|
CWE-200
Information Exposure
|
CVE-2013-3235
|
2024-11-21 10:53 |
2013-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292918
|
- |
|
linux
|
linux_kernel
|
The rose_recvmsg function in net/rose/af_rose.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel s…
|
CWE-200
Information Exposure
|
CVE-2013-3234
|
2024-11-21 10:53 |
2013-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292919
|
- |
|
linux
|
linux_kernel
|
The llcp_sock_recvmsg function in net/nfc/llcp/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable and a certain data structure, which allows local users to obtain…
|
CWE-200
Information Exposure
|
CVE-2013-3233
|
2024-11-21 10:53 |
2013-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292920
|
- |
|
linux
|
linux_kernel
|
The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel…
|
CWE-200
Information Exposure
|
CVE-2013-3232
|
2024-11-21 10:53 |
2013-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
