|
283721
|
- |
|
c-icap_project
|
c-icap
|
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by us…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7401
|
2024-11-21 11:00 |
2014-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283722
|
- |
|
c-icap_project
|
c-icap
|
Multiple unspecified vulnerabilities in request.c in c-icap 0.2.x allow remote attackers to cause a denial of service (crash) via a crafted ICAP request.
|
NVD-CWE-noinfo
|
CVE-2013-7402
|
2024-11-21 11:00 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283723
|
- |
|
canto
|
canto_curses
|
canto_curses/guibase.py in Canto Curses before 0.9.0 allows remote feed servers to execute arbitrary commands via shell metacharacters in a URL in a feed.
|
CWE-77
Command Injection
|
CVE-2013-7416
|
2024-11-21 11:00 |
2014-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283724
|
- |
|
axway
|
securetransport
|
Cross-site request forgery (CSRF) vulnerability in Axway SecureTransport 5.1 SP2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that upload arbitra…
|
CWE-352
Origin Validation Error
|
CVE-2013-7057
|
2024-11-21 11:00 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283725
|
- |
|
allplayer
|
allplayer
|
Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .m3u (playlist) file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7409
|
2024-11-21 11:00 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283726
|
- |
|
f5
|
big-ip_analytics
|
F5 BIG-IP Analytics 11.x before 11.4.0 uses a predictable session cookie, which makes it easier for remote attackers to have unspecified impact by guessing the value.
|
CWE-310
Cryptographic Issues
|
CVE-2013-7408
|
2024-11-21 11:00 |
2014-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283727
|
- |
|
drupal
|
mrbs_module
|
Cross-site request forgery (CSRF) vulnerability in the MRBS module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2013-7407
|
2024-11-21 11:00 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283728
|
- |
|
mrbs_project
|
mrbs
|
SQL injection vulnerability in the MRBS module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-7406
|
2024-11-21 11:00 |
2014-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283729
|
- |
|
jenkins
|
jenkins
|
Jenkins before 1.502 allows remote authenticated users to configure an otherwise restricted project via vectors related to post-build actions.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7330
|
2024-11-21 11:00 |
2014-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283730
|
- |
|
perl
|
cgi_application_module
|
The CGI::Application module before 4.50_50 and 4.50_51 for Perl, when run modes are not specified, allows remote attackers to obtain sensitive information (web queries and environment details) via ve…
|
CWE-200
Information Exposure
|
CVE-2013-7329
|
2024-11-21 11:00 |
2014-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
