|
288281
|
- |
|
jenkins
|
jenkins
|
Jenkins before 1.502 and LTS before 1.480.3 allows remote authenticated users with write access to cause a denial of service via a crafted payload.
|
CWE-20
Improper Input Validation
|
CVE-2013-0331
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288282
|
- |
|
jenkins
|
jenkins
|
Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote authenticated users with write access to build arbitrary jobs via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2013-0330
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288283
|
- |
|
jenkins
|
jenkins
|
Unspecified vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to bypass the CSRF protection mechanism via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2013-0329
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288284
|
- |
|
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-352
Origin Validation Error
|
CVE-2013-0328
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288285
|
- |
|
jenkins
|
jenkins
|
Cross-site request forgery (CSRF) vulnerability in Jenkins master in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to hijack the authentication of users via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2013-0327
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288286
|
- |
|
debian
|
latd
|
Stack-based buffer overflow in llogincircuit.cc in latd 1.25 through 1.30 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long strin…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0251
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288287
|
- |
|
mathijs_koenraadt
|
search_api_sorts
|
Cross-site scripting (XSS) vulnerability in the Search API Sorts module 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain roles to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0227
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288288
|
- |
|
zugec_ivan
|
keyboard_shortcut_utility
|
The Keyboard Shortcut Utility module 7.x-1.x before 7.x-1.1 for Drupal does not properly check node restrictions, which allows (1) remote authenticated users with the "view shortcuts" permission to r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0226
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288289
|
- |
|
user_relationships_project
|
user_relationships
|
Cross-site scripting (XSS) vulnerability in the User Relationships module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.0-alpha5 for Drupal allows remote authenticated users with the "administer us…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0225
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288290
|
- |
|
video_project
|
video
|
The Video module 7.x-2.x before 7.x-2.9 for Drupal, when using the FFmpeg transcoder, allows local users to execute arbitrary PHP code by modifying a temporary PHP file.
|
CWE-16
Configuration
|
CVE-2013-0224
|
2024-11-21 10:47 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
