|
287421
|
- |
|
apache
citrix
|
cloudstack
cloudplatform
|
Apache CloudStack 4.0.0 before 4.0.2 and Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C uses a hash of a predictable sequence, which makes it easier for remote attackers…
|
CWE-310
Cryptographic Issues
|
CVE-2013-2758
|
2024-11-21 10:52 |
2014-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287422
|
- |
|
citrix
|
cloudplatform
|
Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C does not properly restrict access to VNC ports on the management network, which allows remote attackers to have unspecifie…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2757
|
2024-11-21 10:52 |
2014-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287423
|
- |
|
apache
citrix
|
cloudstack
cloudplatform
|
Apache CloudStack 4.0.0 before 4.0.2 and Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C allows remote attackers to bypass the console proxy authentication by leveraging …
|
CWE-287
Improper Authentication
|
CVE-2013-2756
|
2024-11-21 10:52 |
2014-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287424
|
- |
|
krisonav
|
krisonav
|
Cross-site request forgery (CSRF) vulnerability in users_maint.html in KrisonAV CMS before 3.0.2 allows remote attackers to hijack the authentication of administrators for requests that create user a…
|
CWE-352
Origin Validation Error
|
CVE-2013-2713
|
2024-11-21 10:52 |
2014-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287425
|
- |
|
krisonav
|
krisonav
|
Cross-site scripting (XSS) vulnerability in services/get_article.php in KrisonAV CMS before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the content parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-2712
|
2024-11-21 10:52 |
2014-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287426
|
- |
|
webmaster-source
|
wp125
|
Cross-site request forgery (CSRF) vulnerability in the Add/Edit page (adminmenus.php) in the WP125 plugin before 1.5.0 for WordPress allows remote attackers to hijack the authentication of administra…
|
CWE-352
Origin Validation Error
|
CVE-2013-2700
|
2024-11-21 10:52 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287427
|
- |
|
tipsandtricks-hq
|
wordpress_simple_paypal_shopping_cart
|
Cross-site request forgery (CSRF) vulnerability in the WordPress Simple Paypal Shopping Cart plugin before 3.6 for WordPress allows remote attackers to hijack the authentication of administrators for…
|
CWE-352
Origin Validation Error
|
CVE-2013-2705
|
2024-11-21 10:52 |
2014-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287428
|
- |
|
openvpn
|
openvpn_access_server
|
Cross-site request forgery (CSRF) vulnerability in the Admin web interface in OpenVPN Access Server before 1.8.5 allows remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2013-2692
|
2024-11-21 10:52 |
2014-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287429
|
- |
|
netgear
|
wndr4700_firmware
wndr4700
|
Multiple cross-site scripting (XSS) vulnerabilities in NETGEAR WNDR4700 with firmware 1.0.0.34 allow remote authenticated users to inject arbitrary web script or HTML via the (1) UserName or (2) Pass…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3069
|
2024-11-21 10:52 |
2014-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287430
|
- |
|
osisoft
|
pi_interface
|
The DNP Master Driver in the OSIsoft PI Interface before 3.1.2.54 for DNP3 allows physically proximate attackers to cause a denial of service (interface shutdown) via crafted input over a serial line.
|
CWE-20
Improper Input Validation
|
CVE-2013-2828
|
2024-11-21 10:52 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
