|
287911
|
- |
|
canonical
opensuse
perlmonks
|
ubuntu_linux
opensuse
module\
|
The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special u…
|
CWE-20
Improper Input Validation
|
CVE-2013-2145
|
2024-11-21 10:51 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287912
|
- |
|
apache
|
cloudstack
|
Multiple cross-site scripting (XSS) vulnerabilities in Apache CloudStack before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Physical network name to the Zone wizar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2136
|
2024-11-21 10:51 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287913
|
- |
|
debian
canonical
redhat
haproxy
|
debian_linux
ubuntu_linux
enterprise_linux_load_balancer
haproxy
|
HAProxy 1.4 before 1.4.24 and 1.5 before 1.5-dev19, when configured to use hdr_ip or other "hdr_*" functions with a negative occurrence count, allows remote attackers to cause a denial of service (ne…
|
CWE-20
CWE-284
Improper Input Validation
Improper Access Control
|
CVE-2013-2175
|
2024-11-21 10:51 |
2013-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287914
|
- |
|
canonical
|
ubuntu_linux
|
Race condition in the post-installation script (mysql-server-5.5.postinst) for MySQL Server 5.5 for Debian GNU/Linux and Ubuntu Linux creates a configuration file with world-readable permissions befo…
|
CWE-362
Race Condition
|
CVE-2013-2162
|
2024-11-21 10:51 |
2013-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287915
|
- |
|
mongodb
canonical
opensuse
|
mongodb
ubuntu_linux
opensuse
|
bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) vi…
|
NVD-CWE-Other
|
CVE-2013-2132
|
2024-11-21 10:51 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287916
|
- |
|
apache
|
ofbiz
|
Apache Open For Business Project (aka OFBiz) 10.04.01 through 10.04.05, 11.04.01 through 11.04.02, and 12.04.01 allows remote attackers to execute arbitrary Unified Expression Language (UEL) function…
|
CWE-20
Improper Input Validation
|
CVE-2013-2250
|
2024-11-21 10:51 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287917
|
- |
|
apache
|
ofbiz
|
Cross-site scripting (XSS) vulnerability in the "View Log" screen in the Webtools application in Apache Open For Business Project (aka OFBiz) 10.04.01 through 10.04.05, 11.04.01 through 11.04.02, and…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2137
|
2024-11-21 10:51 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287918
|
- |
|
libraw
|
libraw
|
Buffer overflow in the exposure correction code in LibRaw before 0.15.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2127
|
2024-11-21 10:51 |
2013-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287919
|
- |
|
libraw
canonical
opensuse
|
libraw
ubuntu_linux
opensuse
|
Multiple double free vulnerabilities in the LibRaw::unpack function in libraw_cxx.cpp in LibRaw before 0.15.2 allow context-dependent attackers to cause a denial of service (application crash) and po…
|
CWE-399
Resource Management Errors
|
CVE-2013-2126
|
2024-11-21 10:51 |
2013-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287920
|
- |
|
xnview
|
xnview
|
Buffer overflow in XnView before 2.04 allows remote attackers to execute arbitrary code via a crafted PCT file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2577
|
2024-11-21 10:51 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
