|
286171
|
- |
|
canonical
|
ubuntu_linux
|
The Ubuntu Date and Time Indicator (aka indicator-datetime) 13.10.0+13.10.x before 13.10.0+13.10.20131023.2-0ubuntu1.1 does not properly restrict access to Evolution, which allows local users to bypa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7374
|
2024-11-21 11:00 |
2014-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286172
|
- |
|
fortinet
|
fortiauthenticator
|
FortiGuard FortiAuthenticator before 3.0 allows remote administrators to gain privileges via the command line interface.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6990
|
2024-11-21 11:00 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286173
|
- |
|
google
|
android
|
Android before 4.4 does not properly arrange for seeding of the OpenSSL PRNG, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging use of the PRNG within mu…
|
CWE-200
Information Exposure
|
CVE-2013-7373
|
2024-11-21 11:00 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286174
|
- |
|
google
apache
|
android
harmony
|
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache …
|
CWE-310
Cryptographic Issues
|
CVE-2013-7372
|
2024-11-21 11:00 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286175
|
- |
|
ubercart
|
ubercart
|
Session fixation vulnerability in the Ubercart module 6.x-2.x before 6.x-2.13 and 7.x-3.x before 7.x-3.6 for Drupal, when the "Log in new customers after checkout" option is enabled, allows remote at…
|
CWE-287
Improper Authentication
|
CVE-2013-7302
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286176
|
- |
|
malcolm_nooning
|
pirpc
|
The PlRPC module, possibly 0.2020 and earlier, for Perl uses the Storable module, which allows remote attackers to execute arbitrary code via a crafted request, which is not properly handled when it …
|
CWE-94
Code Injection
|
CVE-2013-7284
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286177
|
- |
|
gnome
|
gnome_display_manager
|
GNOME Display Manager (gdm) 3.4.1 and earlier, when disable-user-list is set to true, allows local users to cause a denial of service (unable to login) by pressing the cancel button after entering a …
|
NVD-CWE-noinfo
|
CVE-2013-7273
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286178
|
- |
|
neo4j
|
neo4j
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Neo4J 1.9.2 allow remote attackers to hijack the authentication of administrators for requests that execute arbitrary code, as demonstrat…
|
CWE-352
CWE-78
Origin Validation Error
OS Command
|
CVE-2013-7259
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286179
|
- |
|
simplemachines
|
simple_machines_forum
|
Simple Machines Forum (SMF) 2.0.6, 1.1.19, and earlier allows remote attackers to impersonate arbitrary users via a Unicode homoglyph character in a username.
|
CWE-20
Improper Input Validation
|
CVE-2013-7236
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286180
|
- |
|
simplemachines
|
simple_machines_forum
|
Simple Machines Forum (SMF) before 1.1.19 and 2.x before 2.0.6 allows remote attackers to impersonate arbitrary users via multiple space characters characters.
|
CWE-20
Improper Input Validation
|
CVE-2013-7235
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
