|
287541
|
- |
|
dlink
|
dsl-2740b_firmware
dsl-2740b
|
The D-Link DSL-2740B Gateway with firmware EU_1.0, when an active administrator session exists, allows remote attackers to bypass authentication and gain administrator access via a request to login.c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2271
|
2024-11-21 10:51 |
2013-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287542
|
- |
|
mediawiki
|
mediawiki
|
Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an …
|
NVD-CWE-Other
|
CVE-2013-2114
|
2024-11-21 10:51 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287543
|
- |
|
openvz
|
vzkernel
|
vzkernel before 042stab080.2 in the OpenVZ modification for the Linux kernel 2.6.32 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2239
|
2024-11-21 10:51 |
2013-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287544
|
- |
|
andreas_krennmair
|
tpp
|
tpp 1.3.1 allows remote attackers to execute arbitrary commands via a --exec command in a TPP template file.
|
CWE-94
Code Injection
|
CVE-2013-2208
|
2024-11-21 10:51 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287545
|
- |
|
redhat
ubuntu
|
jboss_enterprise_portal_platform
openshift
jboss_enterprise_brms_platform
jboss_enterprise_web_server
ubuntu
|
The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write …
|
CWE-20
Improper Input Validation
|
CVE-2013-2186
|
2024-11-21 10:51 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287546
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication when a JGroups channel is started, which allows remote attackers to obtai…
|
CWE-287
Improper Authentication
|
CVE-2013-2102
|
2024-11-21 10:51 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287547
|
- |
|
quagga
|
quagga
|
Stack-based buffer overflow in the new_msg_lsa_change_notify function in the OSPFD API (ospf_api.c) in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allow…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2236
|
2024-11-21 10:51 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287548
|
- |
|
apache
|
org.apache.sling.servlets.post
|
The deepGetOrCreateNode function in impl/operations/AbstractCreateOperation.java in org.apache.sling.servlets.post.bundle 2.2.0 and 2.3.0 in Apache Sling does not properly handle a NULL value that re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2254
|
2024-11-21 10:51 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287549
|
- |
|
clutter_project
opensuse
|
clutter
opensuse
|
The translate_hierarchy_event function in x11/clutter-device-manager-xi2.c in Clutter, when resuming the system, does not properly handle XIQueryDevice errors when a device has "disappeared," which c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2190
|
2024-11-21 10:51 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287550
|
- |
|
ibm
|
business_process_monitor
|
Unspecified vulnerability in HP Business Process Monitor 9.13.1 patch 1 and 9.22 patch 1 allows remote attackers to execute arbitrary code and obtain sensitive information via unknown vectors, aka ZD…
|
NVD-CWE-noinfo
|
CVE-2013-2366
|
2024-11-21 10:51 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
