|
292191
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in Drupal 6.x before 6.28 and 7.x before 7.19, when running with older versions of jQuery that are vulnerable to CVE-2011-4969, allows remote attackers to inj…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0244
|
2024-11-21 10:47 |
2014-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292192
|
- |
|
memcached
|
memcached
|
The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0179
|
2024-11-21 10:47 |
2014-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292193
|
- |
|
open_source_development_team
fedoraproject
opensuse
gentoo
acme
|
sthttpd
fedora
opensuse
linux
thttpd
|
thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0348
|
2024-11-21 10:47 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292194
|
- |
|
redhat
opensuse
|
enterprise_linux
opensuse
|
The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the join command, when using the -i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0223
|
2024-11-21 10:47 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292195
|
- |
|
redhat
opensuse
|
enterprise_linux
opensuse
|
The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the uniq command, which triggers a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0222
|
2024-11-21 10:47 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292196
|
- |
|
redhat
opensuse
|
enterprise_linux
opensuse
|
The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the sort command, when using the (1…
|
CWE-20
Improper Input Validation
|
CVE-2013-0221
|
2024-11-21 10:47 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292197
|
- |
|
redhat
clusterlabs
|
enterprise_linux
pacemaker
|
Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote a…
|
CWE-399
Resource Management Errors
|
CVE-2013-0281
|
2024-11-21 10:47 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292198
|
- |
|
ibm
|
lotus_sametime
|
The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of shared links by leveraging meeting-attendance privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0537
|
2024-11-21 10:47 |
2013-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292199
|
- |
|
f5
|
nginx
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) error.log files, which allows local users to obtain sensitive informati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0337
|
2024-11-21 10:47 |
2013-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292200
|
- |
|
ibm
|
storwize_v7000_unified_software
storwize_v7000_unified
|
IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.2.0 does not properly handle device files that are created with the NFS protocol but accessed with a non-NFS protocol, which allows remote authen…
|
CWE-20
Improper Input Validation
|
CVE-2013-0500
|
2024-11-21 10:47 |
2013-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
