|
284651
|
- |
|
livezilla
|
livezilla
|
Multiple cross-site scripting (XSS) vulnerabilities in LiveZilla before 5.1.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) a name in the call administrator feature, (2) uns…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6224
|
2024-11-21 10:58 |
2013-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284652
|
- |
|
emc
|
rsa_security_analytics
rsa_netwitness_nextgen
|
EMC RSA Security Analytics (SA) 10.x before 10.3, and RSA NetWitness NextGen 9.8, does not ensure that SA Core requests originate from the SA REST UI, which allows remote attackers to bypass intended…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6180
|
2024-11-21 10:58 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284653
|
- |
|
nagiosql
|
nagiosql
|
Multiple cross-site scripting (XSS) vulnerabilities in NagiosQL 3.2 SP2 allow remote attackers to inject arbitrary web script or HTML via the txtSearch parameter to (1) admin/hostdependencies.php, (2…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6039
|
2024-11-21 10:58 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284654
|
- |
|
dovecot
|
dovecot
|
checkpassword-reply in Dovecot before 2.2.7 performs setuid operations to a user who is authenticating, which allows local users to bypass authentication and access virtual email accounts by attachin…
|
CWE-287
Improper Authentication
|
CVE-2013-6171
|
2024-11-21 10:58 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284655
|
- |
|
twibright
|
links
|
Integer overflow in Links before 2.8 allows remote attackers to cause a denial of service (crash) via crafted HTML tables.
|
CWE-189
Numeric Errors
|
CVE-2013-6050
|
2024-11-21 10:58 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284656
|
- |
|
claroline
|
claroline
|
Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.11.9 allow remote attackers to inject arbitrary web script or HTML via the (1) box parameter to messaging/messagebox.php, cid…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6267
|
2024-11-21 10:58 |
2013-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284657
|
- |
|
cybozu
|
garoon
|
Session fixation vulnerability in Cybozu Garoon before 3.7.2 allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6004
|
2024-11-21 10:58 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284658
|
- |
|
cybozu
|
garoon
|
CRLF injection vulnerability in Cybozu Garoon 3.1 through 3.5 SP5, when Phone Messages forwarding is enabled, allows remote authenticated users to inject arbitrary e-mail headers via unspecified vect…
|
CWE-20
Improper Input Validation
|
CVE-2013-6003
|
2024-11-21 10:58 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284659
|
- |
|
cybozu
|
garoon
|
The server in Cybozu Garoon before 3.7 SP1 allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2013-6002
|
2024-11-21 10:58 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284660
|
- |
|
cybozu
|
garoon
|
SQL injection vulnerability in the Space function in Cybozu Garoon before 3.7 SP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-6001
|
2024-11-21 10:58 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
