|
285331
|
- |
|
exponentcms
|
exponent_cms
|
Multiple SQL injection vulnerabilities in Exponent CMS before 2.2.0 release candidate 1 allow remote attackers to execute arbitrary SQL commands via the (1) src or (2) username parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2013-3294
|
2024-11-21 10:53 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285332
|
- |
|
trendnet
|
tew-812dru
|
TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) wan network prefix to internet/ipv6.asp; (2) remote port to adm/manageme…
|
CWE-78
OS Command
|
CVE-2013-3365
|
2024-11-21 10:53 |
2014-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285333
|
- |
|
trendnet
|
tew-812dru_firmware
tew-812dru
|
Multiple cross-site request forgery (CSRF) vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1.0.9.0 allow remote attackers to hijack the authentication of administrators for request…
|
CWE-352
Origin Validation Error
|
CVE-2013-3098
|
2024-11-21 10:53 |
2014-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285334
|
- |
|
dell
|
powerconnect_3524p
powerconnect_3348
powerconnect_5324
|
The login page in the GoAhead web server on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote attackers to cause a denial of service (device outage) via a long u…
|
CWE-20
Improper Input Validation
|
CVE-2013-3606
|
2024-11-21 10:53 |
2014-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285335
|
- |
|
dell
|
powerconnect_3524p
powerconnect_3348
powerconnect_5324
|
The OpenManage web application 2.5 build 1.19 on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote authenticated users to cause a denial of service (device reset…
|
CWE-20
Improper Input Validation
|
CVE-2013-3595
|
2024-11-21 10:53 |
2014-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285336
|
- |
|
dell
|
powerconnect_3524p
powerconnect_3348
powerconnect_5324
|
The SSH service on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote attackers to cause a denial of service (device reset) or possibly execute arbitrary code by …
|
CWE-20
Improper Input Validation
|
CVE-2013-3594
|
2024-11-21 10:53 |
2014-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285337
|
- |
|
hexagon
|
erdas_er_viewer
|
Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3483
|
2024-11-21 10:53 |
2014-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285338
|
- |
|
hexagon
|
erdas_er_viewer
|
Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of s…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3482
|
2024-11-21 10:53 |
2014-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285339
|
- |
|
ui
|
unifi
|
Cross-site scripting (XSS) vulnerability in the administer interface in the UniFi Controller in Ubiquiti Networks UniFi 2.3.5 and earlier allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3572
|
2024-11-21 10:53 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285340
|
- |
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted CMarkup object, aka "Internet …
|
CWE-399
Resource Management Errors
|
CVE-2013-3140
|
2024-11-21 10:53 |
2013-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
