|
288301
|
- |
|
apache
|
org.apache.sling.servlets.post
|
The deepGetOrCreateNode function in impl/operations/AbstractCreateOperation.java in org.apache.sling.servlets.post.bundle 2.2.0 and 2.3.0 in Apache Sling does not properly handle a NULL value that re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2254
|
2024-11-21 10:51 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288302
|
- |
|
clutter_project
opensuse
|
clutter
opensuse
|
The translate_hierarchy_event function in x11/clutter-device-manager-xi2.c in Clutter, when resuming the system, does not properly handle XIQueryDevice errors when a device has "disappeared," which c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2190
|
2024-11-21 10:51 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288303
|
- |
|
ibm
|
business_process_monitor
|
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors, aka ZD…
|
NVD-CWE-noinfo
|
CVE-2013-2366
|
2024-11-21 10:51 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288304
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
cgi-bin/firmwareupgrade in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote attackers to modify the fir…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2581
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288305
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, all…
|
NVD-CWE-Other
|
CVE-2013-2580
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288306
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 have an empty password for the hardcoded "qmik" account, which allow…
|
CWE-255
Credentials Management
|
CVE-2013-2579
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288307
|
- |
|
tp-link
|
tl-sc3130
tl-sc3130g
tl-sc3171
tl-sc3171g
lm_firmware
|
cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote attackers to execute arbitr…
|
CWE-78
OS Command
|
CVE-2013-2578
|
2024-11-21 10:51 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288308
|
- |
|
menalto
|
gallery
|
modules/gallery/helpers/data_rest.php in Gallery 3 before 3.0.9 allows remote attackers to bypass intended access restrictions and obtain sensitive information (image files) via the "full" string in …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2241
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288309
|
- |
|
menalto
|
gallery
|
lib/flowplayer.swf.php in Gallery 3 before 3.0.9 does not properly remove query fragments, which allows remote attackers to have an unspecified impact via a replay attack, a different vulnerability t…
|
NVD-CWE-noinfo
|
CVE-2013-2240
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288310
|
- |
|
menalto
|
gallery
|
The (1) uploadify and (2) flowplayer SWF files in Gallery 3 before 3.0.8 do not properly remove query parameters and fragments, which allows remote attackers to have an unspecified impact via a repla…
|
CWE-20
Improper Input Validation
|
CVE-2013-2138
|
2024-11-21 10:51 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
