|
284471
|
- |
|
bmc
|
service_desk_express
|
Multiple SQL injection vulnerabilities in BMC Service Desk Express (SDE) 10.2.1.95 allow remote attackers to execute arbitrary SQL commands via the (1) ASPSESSIONIDASSRATTQ, (2) TABLE_WIDGET_1, (3) T…
|
CWE-89
SQL Injection
|
CVE-2013-4945
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284472
|
- |
|
fusedpress
|
buddypress-extended-frienship-request
|
Cross-site scripting (XSS) vulnerability in the BuddyPress Extended Friendship Request plugin before 1.0.2 for WordPress, when the "Friend Connections" component is enabled, allows remote attackers t…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4944
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284473
|
- |
|
freebsd
|
freebsd
|
The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4851
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284474
|
- |
|
isc
suse
novell
opensuse
freebsd
mandriva
redhat
fedoraproject
hp
slackware
|
bind
suse_linux_enterprise_software_development_kit
suse_linux
dnsco_bind
opensuse
freebsd
business_server
enterprise_server
enterprise_linux
fedora
hp-ux
slackware_l…
|
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remo…
|
NVD-CWE-noinfo
|
CVE-2013-4854
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284475
|
- |
|
yahoo
moodle
|
yui
moodle
|
Cross-site scripting (XSS) vulnerability in flashuploader.swf in the Uploader component in Yahoo! YUI 3.5.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4942
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284476
|
- |
|
yahoo
moodle
|
yui
moodle
|
Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 3.2.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x …
|
CWE-79
Cross-site Scripting
|
CVE-2013-4941
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284477
|
- |
|
yahoo
moodle
|
yui
moodle
|
Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.10.2, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4940
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284478
|
- |
|
yahoo
moodle
|
yui
moodle
|
Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.0.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x befo…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4939
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284479
|
- |
|
moodle
|
moodle
|
The LTI (aka IMS-LTI) mod_form implementation in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, and 2.5.x before 2.5.1 does not properly support the sendname, sen…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4938
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284480
|
- |
|
hp
|
loadrunner
|
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1736.
|
NVD-CWE-noinfo
|
CVE-2013-4801
|
2024-11-21 10:56 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
