|
287971
|
- |
|
apache
|
activemq
|
Cross-site scripting (XSS) vulnerability in the Portfolio publisher servlet in the demo web application in Apache ActiveMQ before 5.9.0 allows remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2013-1880
|
2024-11-21 10:50 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287972
|
- |
|
mediaelementjs
owncloud
|
mediaelement.js
owncloud
|
Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2, as used in ownCloud Server 5.0.x before 5.0.5 and 4.5.x before 4.5.10, allows remote attackers to i…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1967
|
2024-11-21 10:50 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287973
|
- |
|
kolja_schleich
|
leaguemanager
|
SQL injection vulnerability in leaguemanager.php in the LeagueManager plugin before 3.8.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the league_id parameter in the le…
|
CWE-89
SQL Injection
|
CVE-2013-1852
|
2024-11-21 10:50 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287974
|
- |
|
almanah_project
|
almanah
|
Almanah Diary 0.9.0 and 0.10.0 does not encrypt the database when closed, which allows local users to obtain sensitive information by reading the database.
|
CWE-310
Cryptographic Issues
|
CVE-2013-1853
|
2024-11-21 10:50 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287975
|
- |
|
redhat
|
dogtag_certificate_system
certificate_system
|
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate System (RHCS) 8.1 and possibly Dogtag Certificate System 9 and 10 allows remote authenticated users to caus…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2013-1886
|
2024-11-21 10:50 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287976
|
- |
|
redhat
|
dogtag_certificate_system
certificate_system
|
Multiple cross-site scripting (XSS) vulnerabilities in the token processing system (pki-tps) in Red Hat Certificate System (RHCS) 8.1 and possibly Dogtag Certificate System 9 and 10 allow remote atta…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1885
|
2024-11-21 10:50 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287977
|
- |
|
linux-nfs
|
nfs-utils
|
rpc-gssd in nfs-utils before 1.2.8 performs reverse DNS resolution for server names during GSSAPI authentication, which might allow remote attackers to read otherwise-restricted files via DNS spoofin…
|
CWE-200
Information Exposure
|
CVE-2013-1923
|
2024-11-21 10:50 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287978
|
- |
|
simon_mcvittie
|
telepathy_gabble
|
A certain hashing algorithm in Telepathy Gabble 0.16.x before 0.16.5 and 0.17.x before 0.17.3 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted m…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1769
|
2024-11-21 10:50 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287979
|
- |
|
mozilla
|
network_security_services
|
The ssl_Do1stHandshake function in sslsecur.c in libssl in Mozilla Network Security Services (NSS) before 3.15.4, when the TLS False Start feature is enabled, allows man-in-the-middle attackers to sp…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1740
|
2024-11-21 10:50 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287980
|
- |
|
canonical
httplib2_project
|
ubuntu_linux
httplib2
|
httplib2 0.7.2, 0.8, and earlier, after an initial connection is made, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the …
|
CWE-20
Improper Input Validation
|
CVE-2013-2037
|
2024-11-21 10:50 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
