|
284721
|
- |
|
mediawiki
|
mediawiki
|
The CleanChanges extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3, when "Group changes by page in recent changes and watchlist" is enabled, allows remote attacker…
|
CWE-200
Information Exposure
|
CVE-2013-4569
|
2024-11-21 10:55 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284722
|
- |
|
mediawiki
|
mediawiki
|
Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to conduct cross-site scripting (XSS) atta…
|
NVD-CWE-Other
|
CVE-2013-4568
|
2024-11-21 10:55 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284723
|
- |
|
mediawiki
|
mediawiki
|
Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to conduct cross-site scripting (XSS) atta…
|
NVD-CWE-Other
|
CVE-2013-4567
|
2024-11-21 10:55 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284724
|
- |
|
mod_nss_project
redhat
|
mod_nss
enterprise_linux
|
mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4566
|
2024-11-21 10:55 |
2013-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284725
|
- |
|
gnu
suse
|
glibc
linux_enterprise_debuginfo
linux_enterprise_server
|
Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.18 and earlier allows remote attackers to cause a denial of service (cra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4458
|
2024-11-21 10:55 |
2013-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284726
|
- |
|
samba
|
samba
|
Heap-based buffer overflow in the dcerpc_read_ncacn_packet_done function in librpc/rpc/dcerpc_util.c in winbindd in Samba 3.x before 3.6.22, 4.0.x before 4.0.13, and 4.1.x before 4.1.3 allows remote …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4408
|
2024-11-21 10:55 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284727
|
- |
|
linux
|
linux_kernel
|
The net_ctl_permissions function in net/sysctl_net.c in the Linux kernel before 3.11.5 does not properly determine uid and gid values, which allows local users to bypass intended /proc/sys/net restri…
|
CWE-20
Improper Input Validation
|
CVE-2013-4270
|
2024-11-21 10:55 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284728
|
- |
|
redhat
|
libvirt
|
virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to overwrite arbitrary files and possibly gain privileges via unspecified environment variables or command-line arguments.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4400
|
2024-11-21 10:55 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284729
|
- |
|
x2go
|
x2go_server
|
The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-d…
|
CWE-94
Code Injection
|
CVE-2013-4376
|
2024-11-21 10:55 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284730
|
- |
|
apache
|
subversion
mod_dav_svn
|
The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversio…
|
CWE-20
Improper Input Validation
|
CVE-2013-4558
|
2024-11-21 10:55 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
