|
286931
|
- |
|
openx
|
openx
|
Multiple directory traversal vulnerabilities in OpenX before 2.8.10 revision 82710 allow remote administrators to read arbitrary files via a .. (dot dot) in the group parameter to (1) plugin-preferen…
|
CWE-22
Path Traversal
|
CVE-2013-3514
|
2024-11-21 10:53 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286932
|
- |
|
dest-unreach
|
socat
|
socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service (file descriptor co…
|
NVD-CWE-noinfo
|
CVE-2013-3571
|
2024-11-21 10:53 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286933
|
- |
|
lesterchan
|
wp-postviews
|
Cross-site request forgery (CSRF) vulnerability in the options admin page in the WP-PostViews plugin before 1.63 for WordPress allows remote attackers to hijack the authentication of administrators f…
|
CWE-352
Origin Validation Error
|
CVE-2013-3252
|
2024-11-21 10:53 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286934
|
- |
|
qianqin
|
qtranslate
|
Cross-site request forgery (CSRF) vulnerability in the qTranslate plugin 2.5.34 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that chan…
|
CWE-352
Origin Validation Error
|
CVE-2013-3251
|
2024-11-21 10:53 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286935
|
- |
|
dotcms
|
dotcms
|
Multiple cross-site scripting (XSS) vulnerabilities in dotCMS before 2.3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) _loginUserName parameter to application/login/logi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3484
|
2024-11-21 10:53 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286936
|
- |
|
vtiger
|
vtiger_crm
|
Multiple SQL injection vulnerabilities in vTiger CRM 5.0.0 through 5.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) picklist_name parameter in the get_picklists method to so…
|
CWE-89
SQL Injection
|
CVE-2013-3213
|
2024-11-21 10:53 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286937
|
- |
|
zyxel
|
p-660h-63
p-660hw_d1
p-660hw_t3
p-660hw
p-660h-61
p-660h-t1
p-660h-67
p-660h-t3
p-660hw_d3
p-660h-d3
p-660h-d1
|
The web management interface on Zyxel P660 devices allows remote attackers to cause a denial of service (reboot) via a flood of TCP SYN packets.
|
CWE-20
Improper Input Validation
|
CVE-2013-3588
|
2024-11-21 10:53 |
2014-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286938
|
- |
|
b-e-soft
|
artweaver_plus
artweaver_free
|
Stack-based buffer overflow in Artweaver Plus and Free before 3.1.5 allows remote attackers to execute arbitrary code via a crafted JPG image file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3481
|
2024-11-21 10:53 |
2014-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286939
|
- |
|
solarwinds
|
dameware_remote_support
|
Stack-based buffer overflow in the "Add from text file" feature in the DameWare Exporter tool (DWExporter.exe) in DameWare Remote Support 10.0.0.372, 9.0.1.247, and earlier allows user-assisted attac…
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3249
|
2024-11-21 10:53 |
2014-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286940
|
- |
|
apptha
|
video_gallery_plugin
|
SQL injection vulnerability in Apptha WordPress Video Gallery 2.0, 1.6, and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the playid parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2013-3478
|
2024-11-21 10:53 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
