|
283951
|
- |
|
zimbra
|
collaboration_server
|
Unspecified vulnerability in Zimbra Collaboration Server 7.2.5 and earlier, and 8.0.x through 8.0.5, has "critical" impact and unspecified vectors, a different vulnerability than CVE-2013-7091.
|
NVD-CWE-noinfo
|
CVE-2013-7217
|
2024-11-21 11:00 |
2013-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283952
|
- |
|
etoshop
|
classifieds_creator
|
Multiple SQL injection vulnerabilities in Classifieds Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) ID parameter to demo/classifieds/product.asp, or (2) UserID or (…
|
CWE-89
SQL Injection
|
CVE-2013-7216
|
2024-11-21 11:00 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283953
|
- |
|
optimizepress
|
optimizepress
|
Multiple unrestricted file upload vulnerabilities in (1) media-upload.php, (2) media-upload-lncthumb.php, and (3) media-upload-sq_button.php in lib/admin/ in the OptimizePress theme before 1.61 for W…
|
CWE-20
Improper Input Validation
|
CVE-2013-7102
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283954
|
- |
|
typo3
|
typo3
|
The (old) Form Content Element component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated editors to generate arbitrary H…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7081
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283955
|
- |
|
typo3
|
typo3
|
The creating record functionality in Extension table administration library (feuser_adminLib.inc) in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, and 6.0.0 through 6.0.11 allows remote attackers…
|
NVD-CWE-noinfo
|
CVE-2013-7080
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283956
|
- |
|
typo3
|
typo3
|
Open redirect vulnerability in the OpenID extension in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote attackers to redirect users to arb…
|
CWE-20
Improper Input Validation
|
CVE-2013-7079
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283957
|
- |
|
typo3
|
typo3
|
The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbit…
|
CWE-310
Cryptographic Issues
|
CVE-2013-7075
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283958
|
- |
|
typo3
|
typo3
|
The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7073
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283959
|
- |
|
znc
|
znc-msvc
|
Stack-based buffer overflow in fish.cpp in the Fish plugin for ZNC, as used in ZNC for Windows (znc-msvc) 0.206 and earlier, allows remote attackers to cause a denial of service (crash) via a long st…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7049
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283960
|
- |
|
cisco
|
ios_xe
|
The VTY authentication implementation in Cisco IOS XE 03.02.xxSE and 03.03.xxSE incorrectly relies on the Linux-IOS internal-network configuration, which allows remote attackers to bypass authenticat…
|
CWE-287
Improper Authentication
|
CVE-2013-6979
|
2024-11-21 11:00 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
