|
293601
|
- |
|
ge
catapultsoftware
|
intelligent_platforms_proficy_dnp3_i\/o_driver
intelligent_platforms_proficy_hmi\/scada_cimplicity
catapult_dnp3_i\/o_driver
intelligent_platforms_proficy_hmi\/scada_ifix
|
The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent…
|
CWE-20
Improper Input Validation
|
CVE-2013-2811
|
2024-11-21 10:52 |
2013-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293602
|
- |
|
dlink
|
dir865l_firmware
dir865l
|
Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR865L router (Rev. A1) with firmware before 1.05b07 allow remote attackers to hijack the authentication of administrators for re…
|
CWE-352
Origin Validation Error
|
CVE-2013-3095
|
2024-11-21 10:52 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293603
|
- |
|
ibm
|
cognos_business_intelligence
|
The servlet gateway in IBM Cognos Business Intelligence 8.4.1 before IF3, 10.1.0 before IF4, 10.1.1 before IF4, 10.2.0 before IF4, 10.2.1 before IF2, and 10.2.1.1 before IF1 allows remote attackers t…
|
CWE-20
Improper Input Validation
|
CVE-2013-3030
|
2024-11-21 10:52 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293604
|
- |
|
google
|
chrome
|
Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.48 allow attackers to execute arbitrary code or possibly have other impact via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-2931
|
2024-11-21 10:52 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293605
|
- |
|
silverstripe
|
silverstripe
|
security/MemberLoginForm.php in SilverStripe 3.0.3 supports login using a GET request, which makes it easier for remote attackers to conduct phishing attacks without detection by the victim.
|
CWE-20
Improper Input Validation
|
CVE-2013-2653
|
2024-11-21 10:52 |
2013-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293606
|
- |
|
ibm
|
lotus_sametime
|
The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to share crafted links via the Library function.
|
CWE-20
Improper Input Validation
|
CVE-2013-3045
|
2024-11-21 10:52 |
2013-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293607
|
- |
|
ibm
|
lotus_sametime
|
The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of chat messages, or compose anonymous chat messages, by leveraging meeting…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3044
|
2024-11-21 10:52 |
2013-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293608
|
- |
|
andrew_simpson
|
webcollab
|
CRLF injection vulnerability in help/help_language.php in WebCollab 3.30 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the item …
|
CWE-79
Cross-site Scripting
|
CVE-2013-2652
|
2024-11-21 10:52 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293609
|
- |
|
linksalpha
|
social_sharing_toolkit_plugin
|
Cross-site request forgery (CSRF) vulnerability in the Social Sharing Toolkit plugin 2.1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that manip…
|
CWE-352
Origin Validation Error
|
CVE-2013-2701
|
2024-11-21 10:52 |
2013-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293610
|
- |
|
boltwire
|
boltwire
|
Multiple cross-site scripting (XSS) vulnerabilities in BoltWire 3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) "p" or (2) content parameter to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2013-2651
|
2024-11-21 10:52 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
