|
286151
|
- |
|
sap
|
netweaver
|
The J2EE Engine in SAP NetWeaver 6.40, 7.02, and earlier allows remote attackers to redirect users to arbitrary web sites, conduct phishing attacks, and obtain sensitive information (cookies and SAPP…
|
CWE-20
Improper Input Validation
|
CVE-2013-6814
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286152
|
- |
|
sap
|
netweaver
|
The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS ABAP) in SAP NetWeaver 7.31 and earlier allows remote attackers to cause a denial of service via unspecified vectors, related to a…
|
CWE-20
Improper Input Validation
|
CVE-2013-6815
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286153
|
- |
|
sunil_nanda
|
blue_wrench_video_widget
|
Cross-site request forgery (CSRF) vulnerability in bluewrench-video-widget.php in the Blue Wrench Video Widget plugin before 2.0.0 for WordPress allows remote attackers to hijack the authentication o…
|
CWE-352
Origin Validation Error
|
CVE-2013-6797
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286154
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc in libjingle in WebRTC, as used in Google Chrome before 31.0.1650.48 and other products, allows remote …
|
NVD-CWE-Other
|
CVE-2013-6631
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286155
|
- |
|
google
|
chrome
|
The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during t…
|
CWE-189
Numeric Errors
|
CVE-2013-6630
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286156
|
- |
|
google
oracle
artifex
libjpeg-turbo
fedoraproject
opensuse
canonical
debian
mozilla
|
chrome
solaris
gpl_ghostscript
libjpeg-turbo
fedora
opensuse
ubuntu_linux
debian_linux
firefox
seamonkey
thunderbird
firefox_esr
|
The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48, Ghostscript, and other products, does not check for certain dup…
|
CWE-200
Information Exposure
|
CVE-2013-6629
|
2024-11-21 10:59 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286157
|
- |
|
google
|
chrome
|
Google Chrome before 31.0.1650.57 allows remote attackers to bypass intended sandbox restrictions by leveraging access to a renderer process, as demonstrated during a Mobile Pwn2Own competition at Pa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6802
|
2024-11-21 10:59 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286158
|
- |
|
microsoft
|
word
|
Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed .doc file containing an embedded image, as demonstrated by wor…
|
CWE-399
Resource Management Errors
|
CVE-2013-6801
|
2024-11-21 10:59 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286159
|
- |
|
google
debian
|
chrome
debian_linux
|
Integer overflow in Google Chrome before 31.0.1650.57 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as demonstrated durin…
|
CWE-189
Numeric Errors
|
CVE-2013-6632
|
2024-11-21 10:59 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286160
|
- |
|
cisco
|
unified_communications_manager
|
Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier allows local users to bypass file permissions, and read, modify, or create arbitrary files, via an "overload" of the command-line …
|
CWE-20
Improper Input Validation
|
CVE-2013-6689
|
2024-11-21 10:59 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
