|
286831
|
- |
|
lina_wolf
|
seo_pack_for_tt_news
|
SQL injection vulnerability in the SEO Pack for tt_news extension before 1.3.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-4719
|
2024-11-21 10:56 |
2013-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286832
|
- |
|
christophe_balisky
|
meta_feedit
|
SQL injection vulnerability in the meta_feedit extension 0.1.10 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-4683
|
2024-11-21 10:56 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286833
|
- |
|
bas_van_beek
|
multishop
|
SQL injection vulnerability in the Multishop extension before 2.0.39 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-4682
|
2024-11-21 10:56 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286834
|
- |
|
michael_staatz
|
sofortueberweisung2commerce
|
SQL injection vulnerability in the sofortueberweisung2commerce extension before 2.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-4681
|
2024-11-21 10:56 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286835
|
- |
|
urs_maag
|
maag_form_captcha
|
Open redirect vulnerability in Maag Form Captcha extension 2.0.0 and earlier for TYPO3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified ve…
|
NVD-CWE-noinfo
|
CVE-2013-4680
|
2024-11-21 10:56 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286836
|
- |
|
fortinet
|
forticlient
forticlient_lite
forticlient_ssl_vpn
|
FortiClient before 4.3.5.472 on Windows, before 4.0.3.134 on Mac OS X, and before 4.0 on Android; FortiClient Lite before 4.3.4.461 on Windows; FortiClient Lite 2.0 through 2.0.0223 on Android; and F…
|
CWE-255
CWE-310
Credentials Management
Cryptographic Issues
|
CVE-2013-4669
|
2024-11-21 10:56 |
2013-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286837
|
5.5 |
MEDIUM
Local
|
redhat
|
openshift
|
In Red Hat Openshift 1, weak default permissions are applied to the /etc/openshift/server_priv.pem file on the broker server, which could allow users with local access to the broker to read this file.
|
-
|
CVE-2013-4281
|
2024-11-21 10:55 |
2022-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286838
|
7.5 |
HIGH
Network
|
redhat
|
openshift
|
The deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat Openshift 1, installs a default public key in the root user's authorized_keys file.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2013-4253
|
2024-11-21 10:55 |
2022-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286839
|
9.1 |
CRITICAL
Network
|
redhat
|
openshift
|
In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. This may lead to loss of confidentiality and integrity.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2013-4561
|
2024-11-21 10:55 |
2022-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286840
|
6.1 |
MEDIUM
Network
|
emberjs
|
ember.js
|
In general, Ember.js escapes or strips any user-supplied content before inserting it in strings that will be sent to innerHTML. However, the `tagName` property of an `Ember.View` was inserted into su…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4170
|
2024-11-21 10:55 |
2022-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
