|
283701
|
7.5 |
HIGH
Network
|
mapsplugin
|
googlemaps
|
The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to bypass an intended protection mechanism.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7432
|
2024-11-21 11:00 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283702
|
5.3 |
MEDIUM
Network
|
mapsplugin
|
googlemaps
|
Full path disclosure in the Googlemaps plugin before 3.1 for Joomla!.
|
CWE-200
Information Exposure
|
CVE-2013-7431
|
2024-11-21 11:00 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283703
|
9.8 |
CRITICAL
Network
|
kamailio
|
kamailio
|
Insecure Temporary file vulnerability in /tmp/kamailio_fifo in kamailio 4.0.1.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2013-7426
|
2024-11-21 11:00 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283704
|
6.1 |
MEDIUM
Network
|
mapsplugin
|
googlemaps
|
Cross-site scripting (XSS) vulnerability in the Googlemaps plugin before 3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the xmlns parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7430
|
2024-11-21 11:00 |
2017-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283705
|
- |
|
gnu
|
glibc
|
The getaddrinfo function in glibc before 2.15, when compiled with libidn and the AI_IDN flag is used, allows context-dependent attackers to cause a denial of service (invalid free) and possibly execu…
|
CWE-17
Code
|
CVE-2013-7424
|
2024-11-21 11:00 |
2015-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283706
|
- |
|
apple
perl
|
mac_os_x
perl
|
Integer underflow in regcomp.c in Perl before 5.20, as used in Apple OS X before 10.10.5 and other products, allows context-dependent attackers to execute arbitrary code or cause a denial of service …
|
CWE-189
Numeric Errors
|
CVE-2013-7422
|
2024-11-21 11:00 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283707
|
- |
|
gehealthcare
|
centricity_dms
|
The Ad Hoc Reporting feature in GE Healthcare Centricity DMS 4.2 has a password of Never!Mind for the Administrator user, which has unspecified impact and attack vectors. NOTE: it is not clear wheth…
|
CWE-255
Credentials Management
|
CVE-2013-7405
|
2024-11-21 11:00 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283708
|
- |
|
gehealthcare
|
discovery_nm_750b
|
GE Healthcare Discovery NM 750b has a password of 2getin for the insite account for (1) Telnet and (2) FTP, which has unspecified impact and attack vectors. NOTE: it is not clear whether this passwo…
|
CWE-255
Credentials Management
|
CVE-2013-7404
|
2024-11-21 11:00 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283709
|
- |
|
async-http-client_project
redhat
|
async-http-client
jboss_fuse
|
main/java/com/ning/http/client/AsyncHttpClientConfig.java in Async Http Client (aka AHC or async-http-client) before 1.9.0 does not require a hostname match during verification of X.509 certificates,…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2013-7398
|
2024-11-21 11:00 |
2015-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283710
|
- |
|
redhat
async-http-client_project
|
jboss_fuse
async-http-client
|
Async Http Client (aka AHC or async-http-client) before 1.9.0 skips X.509 certificate verification unless both a keyStore location and a trustStore location are explicitly set, which allows man-in-th…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2013-7397
|
2024-11-21 11:00 |
2015-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
