|
295751
|
- |
|
chatelao
|
php_address_book
|
Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) addressbook/register/delete_user.php, (2) address…
|
CWE-89
SQL Injection
|
CVE-2013-0135
|
2024-11-21 10:46 |
2013-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295752
|
- |
|
nvidia
|
display_driver
|
The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or cau…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0109
|
2024-11-21 10:46 |
2013-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295753
|
- |
|
tigertext
|
tigertext
|
The Contact Customer Support feature in the TigerText Free Private Texting app before 3.1.402 for iOS sends a log-file e-mail message with unencrypted credentials, which allows remote attackers to ob…
|
CWE-255
Credentials Management
|
CVE-2013-0128
|
2024-11-21 10:46 |
2013-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295754
|
- |
|
c2enterprise
|
c2_webresource
|
Cross-site scripting (XSS) vulnerability in fileview.asp in C2 WebResource allows remote attackers to inject arbitrary web script or HTML via the File parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0125
|
2024-11-21 10:46 |
2013-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295755
|
- |
|
zeroclipboard_project
|
zeroclipboard
|
Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vu…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6550
|
2024-11-21 10:46 |
2013-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295756
|
- |
|
coreftp
|
coreftp
|
Multiple buffer overflows in Core FTP before 2.2 build 1769 allow remote FTP servers to execute arbitrary code or cause a denial of service (application crash) via a long directory name in a (1) DELE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0130
|
2024-11-21 10:46 |
2013-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295757
|
- |
|
novell
|
sentinel_log_manager
|
Novell Sentinel Log Manager before 1.2.0.3 allows remote attackers to create data retention policies via a crafted text/x-gwt-rpc request to novelllogmanager/datastorageservice.rpc, and allows remote…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6534
|
2024-11-21 10:46 |
2013-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295758
|
- |
|
askia
|
askiaweb
|
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to inject arbitrary web script or HTML via the (1) Number or (2) UpdatePag…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0124
|
2024-11-21 10:46 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295759
|
- |
|
askia
|
askiaweb
|
Multiple SQL injection vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to execute arbitrary SQL commands via (1) the nHistoryId parameter to WebProd/pages/pgH…
|
CWE-89
SQL Injection
|
CVE-2013-0123
|
2024-11-21 10:46 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295760
|
- |
|
verizon
|
fios_actiontec_mi424wr-gen31_router_firmware
fios_actiontec_mi424wr-gen31_router
|
Multiple cross-site request forgery (CSRF) vulnerabilities in index.cgi on the Verizon FIOS Actiontec MI424WR-GEN3I router with firmware 40.19.36 allow remote attackers to hijack the authentication o…
|
CWE-352
Origin Validation Error
|
CVE-2013-0126
|
2024-11-21 10:46 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
