|
289191
|
4.3 |
MEDIUM
Network
|
pyrad_project
|
pyrad
|
The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which makes it easier for remote attackers to spoof packets by predicting the next ID, a different vulnerability tha…
|
CWE-20
Improper Input Validation
|
CVE-2013-0342
|
2024-11-21 10:47 |
2019-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289192
|
5.5 |
MEDIUM
Local
|
openstack
debian
|
nova
debian_linux
|
OpenStack nova base images permissions are world readable
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2013-0326
|
2024-11-21 10:47 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289193
|
5.4 |
MEDIUM
Network
|
theforeman
|
katello
|
Katello: Username in Notification page has cross site scripting
|
CWE-79
Cross-site Scripting
|
CVE-2013-0283
|
2024-11-21 10:47 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289194
|
7.4 |
HIGH
Network
|
haskell
|
hs-tls
|
haskell-tls-extra before 0.6.1 has Basic Constraints attribute vulnerability may lead to Man in the Middle attacks on TLS connections
|
CWE-20
Improper Input Validation
|
CVE-2013-0243
|
2024-11-21 10:47 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289195
|
5.4 |
MEDIUM
Network
|
owncloud
|
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.5, 4.0.10, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) unspecified parameters to apps/cal…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0203
|
2024-11-21 10:47 |
2019-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289196
|
6.1 |
MEDIUM
Network
|
matomo
|
matomo
|
Cross-site Scripting (XSS) in Piwik before 1.10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: This is a different vulnerability than CVE-2013-0193 an…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0195
|
2024-11-21 10:47 |
2019-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289197
|
6.1 |
MEDIUM
Network
|
matomo
|
matomo
|
Cross-site Scripting (XSS) in Piwik before 1.10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: This is a different vulnerability than CVE-2013-0193 an…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0194
|
2024-11-21 10:47 |
2019-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289198
|
6.1 |
MEDIUM
Network
|
matomo
|
matomo
|
Cross-site Scripting (XSS) in Piwik before 1.10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: This is a different vulnerability than CVE-2013-0194 an…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0193
|
2024-11-21 10:47 |
2019-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289199
|
6.1 |
MEDIUM
Network
|
redhat
|
cloudforms
manageiq_enterprise_virtualization_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in ManageIQ EVM allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0186
|
2024-11-21 10:47 |
2019-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289200
|
5.5 |
MEDIUM
Local
|
redislabs
|
redis
|
Insecure temporary file vulnerability in Redis 2.6 related to /tmp/redis.ds.
|
CWE-20
Improper Input Validation
|
CVE-2013-0180
|
2024-11-21 10:47 |
2019-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
