|
288711
|
- |
|
opensource_technologies
|
responsive_logo_slideshow
|
Cross-site scripting (XSS) vulnerability in the Responsive Logo Slideshow plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the "URL and Image" field.
|
CWE-79
Cross-site Scripting
|
CVE-2013-1759
|
2024-11-21 10:50 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288712
|
- |
|
marekkis
|
watermark
|
Cross-site scripting (XSS) vulnerability in the Marekkis Watermark plugin 0.9.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the pfad parameter to wp-admin/options…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1758
|
2024-11-21 10:50 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288713
|
- |
|
blair_williams
joobi
civicrm
|
pretty_link_lite
com_jnews
civicrm
|
Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin before 1.6.3 for WordPress, JNews (com_jnews) compo…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1636
|
2024-11-21 10:50 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288714
|
- |
|
owncloud
|
owncloud
|
SQL injection vulnerability in lib/bookmarks.php in ownCloud Server 4.5.x before 4.5.11 and 5.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vector…
|
CWE-89
SQL Injection
|
CVE-2013-2046
|
2024-11-21 10:50 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288715
|
- |
|
owncloud
|
owncloud
|
SQL injection vulnerability in lib/db.php in ownCloud Server 5.0.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-2045
|
2024-11-21 10:50 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288716
|
- |
|
owncloud
|
owncloud
|
SQL injection vulnerability in addressbookprovider.php in ownCloud Server before 5.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, related to the cont…
|
CWE-89
SQL Injection
|
CVE-2013-1893
|
2024-11-21 10:50 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288717
|
- |
|
owncloud
|
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud Server before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) new_name parameter to apps/bookmarks/ajax…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1890
|
2024-11-21 10:50 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288718
|
- |
|
redhat
|
satellite
|
Cross-site scripting (XSS) vulnerability in account/EditAddress.do in Spacewalk and Red Hat Network (RHN) Satellite 5.6 allows remote attackers to inject arbitrary web script or HTML via the type par…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1871
|
2024-11-21 10:50 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288719
|
- |
|
extended_module_player_project
|
extended_module_player
|
Buffer overflow in the get_dsmp function in loaders/masi_load.c in libxmp before 4.1.0 allows remote attackers to execute arbitrary code via a crafted MASI file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1980
|
2024-11-21 10:50 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288720
|
- |
|
apache
|
wicket
|
Unspecified vulnerability in Apache Wicket 1.4.x before 1.4.23, 1.5.x before 1.5.11, and 6.x before 6.8.0 allows remote attackers to obtain sensitive information via vectors that cause raw HTML templ…
|
NVD-CWE-noinfo
|
CVE-2013-2055
|
2024-11-21 10:50 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
