|
283141
|
- |
|
typo3
|
typo3
|
Cross-site scripting (XSS) vulnerability in the Backend User Administration Module in TYPO3 6.0.x before 6.0.12 and 6.1.x before 6.1.7 allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7077
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283142
|
- |
|
typo3
|
typo3
|
Cross-site scripting (XSS) vulnerability in Extension Manager in TYPO3 4.5.x before 4.5.32 and 4.7.x before 4.7.17 allows remote attackers to inject arbitrary web script or HTML via unspecified vecto…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7076
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283143
|
- |
|
typo3
|
typo3
|
Multiple cross-site scripting (XSS) vulnerabilities in Content Editing Wizards in TYPO3 4.5.x before 4.5.32, 4.7.x before 4.7.17, 6.0.x before 6.0.12, 6.1.x before 6.1.7, and the development versions…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7074
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283144
|
- |
|
livezilla
|
livezilla
|
Cross-site scripting (XSS) vulnerability in mobile/php/translation/index.php in LiveZilla before 5.1.1.0 allows remote attackers to inject arbitrary web script or HTML via the g_language parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7002
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283145
|
- |
|
iscripts
|
autohoster
|
Multiple directory traversal vulnerabilities in iScripts AutoHoster, possibly 2.4, allow remote attackers to read arbitrary files via the (1) tmpid parameter to websitebuilder/showtemplateimage.php, …
|
CWE-22
Path Traversal
|
CVE-2013-7190
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283146
|
- |
|
iscripts
|
autohoster
|
Multiple SQL injection vulnerabilities in iScripts AutoHoster, possibly 2.4, allow remote attackers to execute arbitrary SQL commands via the cmbdomain parameter to (1) checktransferstatus.php, (2) c…
|
CWE-89
SQL Injection
|
CVE-2013-7189
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283147
|
- |
|
hostbillapp
|
hostbill
|
Cross-site scripting (XSS) vulnerability in KBKP Software HostBill before 2013-12-14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7188
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283148
|
- |
|
ncrafts
|
formcraft
|
SQL injection vulnerability in form.php in the FormCraft plugin 1.3.7 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2013-7187
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283149
|
- |
|
steinberg
|
mymp3pro
|
Buffer overflow in Steinberg MyMp3PRO 5.0 (Build 5.1.0.21) allows remote attackers to execute arbitrary code via a long string in a .m3u file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7186
|
2024-11-21 11:00 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283150
|
- |
|
upc
|
ireland_cisco_epc2425
|
The UPC Ireland Cisco EPC 2425 router (aka Horizon Box) does not have a sufficiently large number of possible WPA-PSK passphrases, which makes it easier for remote attackers to obtain access via a br…
|
CWE-310
Cryptographic Issues
|
CVE-2013-7136
|
2024-11-21 11:00 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
