|
291391
|
- |
|
opensuse
phpmyadmin
|
opensuse
phpmyadmin
|
phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to bypass the clickjacking protection mechanism via certain vectors related to Header.class.php.
|
CWE-20
Improper Input Validation
|
CVE-2013-5029
|
2024-11-21 10:56 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291392
|
- |
|
winscp
debian
opensuse
putty
simon_tatham
|
winscp
debian_linux
opensuse
putty
|
Integer overflow in PuTTY 0.62 and earlier, WinSCP before 5.1.6, and other products that use PuTTY allows remote SSH servers to cause a denial of service (crash) and possibly execute arbitrary code i…
|
CWE-189
Numeric Errors
|
CVE-2013-4852
|
2024-11-21 10:56 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291393
|
- |
|
bigtreecms
|
bigtree_cms
|
Cross-site request forgery (CSRF) vulnerability in core/admin/modules/users/create.php in BigTree CMS 4.0 RC2 and earlier allows remote attackers to hijack the authentication of administrators for re…
|
CWE-352
Origin Validation Error
|
CVE-2013-4881
|
2024-11-21 10:56 |
2013-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291394
|
- |
|
hp
|
service_manager
service_center
|
Unspecified vulnerability in HP Service Manager 7.11, 9.21, 9.30, and 9.31 and Service Center 6.2.8 allows remote attackers to obtain privileged access via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-4808
|
2024-11-21 10:56 |
2013-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291395
|
- |
|
cybozu
|
mailwise
|
Cybozu Mailwise 5.0.4 and 5.0.5 allows remote authenticated users to obtain sensitive e-mail content intended for different persons in opportunistic circumstances by reading Subject header lines with…
|
CWE-200
Information Exposure
|
CVE-2013-4698
|
2024-11-21 10:56 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291396
|
- |
|
bigtreecms
|
bigtree_cms
|
Cross-site scripting (XSS) vulnerability in core/admin/modules/developer/modules/views/add.php in BigTree CMS 4.0 RC2 and earlier allows remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4880
|
2024-11-21 10:56 |
2013-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291397
|
- |
|
bigtreecms
|
bigtree_cms
|
SQL injection vulnerability in core/inc/bigtree/cms.php in BigTree CMS 4.0 RC2 and earlier allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to index.php.
|
CWE-89
SQL Injection
|
CVE-2013-4879
|
2024-11-21 10:56 |
2013-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291398
|
- |
|
hp
|
3com_router
5500g-24_ei_10\/100\/1000_no_power_supply_unit_switch
5500-48g_si_switch
5500-48g_ei_switch
h3c_ethernet_switch
5500-24g_si_switch
5500g-24_ei_sfp_no_power_supply_unit_s…
|
The OSPF implementation on HP JD9##A routers; HP J4###A, J484#B, J8###A, JD3##A, JE###A, and JF55#A switches; HP 3COM routers and switches; and HP H3C routers and switches does not consider the possi…
|
NVD-CWE-noinfo
|
CVE-2013-4806
|
2024-11-21 10:56 |
2013-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291399
|
- |
|
cotonti
|
cotonti_siena
|
SQL injection vulnerability in modules/rss/rss.php in Cotonti before 0.9.14 allows remote attackers to execute arbitrary SQL commands via the "c" parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2013-4789
|
2024-11-21 10:56 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291400
|
- |
|
magnolia-cms
|
magnolia_form_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the Magnolia Form module 1.x before 1.4.7 and 2.x before 2.0.2 for Magnolia CMS allow remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4759
|
2024-11-21 10:56 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
