|
285461
|
8.1 |
HIGH
Network
|
vtiger
|
vtiger_crm
|
vtiger CRM 5.4.0 and earlier contain local file-include vulnerabilities in 'customerportal.php' which allows remote attackers to view files and execute local script code.
|
CWE-74
Injection
|
CVE-2013-3212
|
2024-11-21 10:53 |
2020-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285462
|
9.8 |
CRITICAL
Network
|
xnview
|
xnview
|
XnView 2.03 has an integer overflow vulnerability
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2013-3493
|
2024-11-21 10:53 |
2020-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285463
|
9.8 |
CRITICAL
Network
|
xnview
|
xnview
|
XnView 2.03 has a stack-based buffer overflow vulnerability
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3492
|
2024-11-21 10:53 |
2020-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285464
|
9.6 |
CRITICAL
Network
|
irfanview
|
flashpix_plugin
|
IrfanView FlashPix Plugin 4.3.4 0 has an Integer Overflow Vulnerability
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2013-3486
|
2024-11-21 10:53 |
2020-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285465
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted RLE compressed layer in an XCF file.
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3247
|
2024-11-21 10:53 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285466
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted image layer in an XCF file.
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3246
|
2024-11-21 10:53 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285467
|
8.1 |
HIGH
Network
|
supermicro
citrix
|
smt_x9_firmware
smt_x8_firmware
netscaler_sdx_firmware
netscaler_firmware
netscaler_sd-wan_firmware
|
Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before SMT_X9_317 and firmware for Supermicro X8 generation motherboards before SMT X8 312 con…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2013-3619
|
2024-11-21 10:53 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285468
|
10.0 |
CRITICAL
Network
|
grandstream
|
gxv3501_firmware
gxv3504_firmware
gxv3601_firmware
gxv3601hd_firmware
gxv3601ll_firmware
gxv3611hd_firmware
gxv3611ll_firmware
gxv3615w_firmware
gxv3615p_firmware
gxv3651fh…
|
Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other camera models with firmware 1.0.4.11, have a hardcoded …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2013-3542
|
2024-11-21 10:53 |
2019-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285469
|
7.5 |
HIGH
Network
|
loftek
|
nexus_543_firmware
|
The Loftek Nexus 543 IP Camera allows remote attackers to obtain (1) IP addresses via a request to get_realip.cgi or (2) firmware versions (ui and system), timestamp, serial number, p2p port number, …
|
CWE-200
Information Exposure
|
CVE-2013-3314
|
2024-11-21 10:53 |
2019-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285470
|
7.5 |
HIGH
Network
|
loftek
|
nexus_543_firmware
|
The Loftek Nexus 543 IP Camera stores passwords in cleartext, which allows remote attackers to obtain sensitive information via an HTTP GET request to check_users.cgi. NOTE: cleartext passwords can a…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2013-3313
|
2024-11-21 10:53 |
2019-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
