|
286091
|
- |
|
crunchify
|
facebook_members
|
Cross-site request forgery (CSRF) vulnerability in the Facebook Members plugin before 5.0.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that modi…
|
CWE-352
Origin Validation Error
|
CVE-2013-2703
|
2024-11-21 10:52 |
2013-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286092
|
- |
|
thulasidas
|
easy-adsense-lite
|
Cross-site request forgery (CSRF) vulnerability in the Easy AdSense Lite plugin before 6.10 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that mod…
|
CWE-352
Origin Validation Error
|
CVE-2013-2702
|
2024-11-21 10:52 |
2013-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286093
|
- |
|
joomla
|
joomla\!
|
Cross-site scripting (XSS) vulnerability in the Voting plugin in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3059
|
2024-11-21 10:52 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286094
|
- |
|
joomla
|
joomla\!
|
Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3058
|
2024-11-21 10:52 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286095
|
- |
|
joomla
|
joomla\!
|
Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and list the privileges of arbitrary users via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3057
|
2024-11-21 10:52 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286096
|
- |
|
joomla
|
joomla\!
|
Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and delete the private messages of arbitrary users via unspecified vecto…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3056
|
2024-11-21 10:52 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286097
|
- |
|
strongswan
|
strongswan
|
strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature.
|
CWE-287
Improper Authentication
|
CVE-2013-2944
|
2024-11-21 10:52 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286098
|
- |
|
vmware
|
vcenter_server_appliance
|
VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of servi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3080
|
2024-11-21 10:52 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286099
|
- |
|
vmware
|
vcenter_server_appliance
|
VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to execute arbitrary programs with root privileges by leveraging Virtual Appliance Management Interface (V…
|
CWE-94
Code Injection
|
CVE-2013-3079
|
2024-11-21 10:52 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286100
|
- |
|
sap
|
basis_communication_services
|
SAP BASIS Communication Services 4.6B through 7.30 allows remote authenticated users to execute arbitrary commands via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2013-3063
|
2024-11-21 10:52 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
