|
287481
|
- |
|
qemu
|
qemu
|
Buffer overflow in hw/timer/hpet.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via vectors related to the number of timers.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4527
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287482
|
- |
|
qemu
|
qemu
|
Buffer overflow in hw/ide/ahci.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via vectors related to migrating ports.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4526
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287483
|
- |
|
payment_for_webform_project
|
payment_for_webform
|
The Payment for Webform module 7.x-1.x before 7.x-1.5 for Drupal does not restrict access by anonymous users, which allows remote anonymous users to use the payment of other anonymous users when subm…
|
CWE-287
Improper Authentication
|
CVE-2013-4594
|
2024-11-21 10:55 |
2014-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287484
|
- |
|
libgadu
|
libgadu
|
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
|
CWE-310
Cryptographic Issues
|
CVE-2013-4488
|
2024-11-21 10:55 |
2014-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287485
|
- |
|
apache
|
tomcat
|
Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execut…
|
CWE-94
Code Injection
|
CVE-2013-4444
|
2024-11-21 10:55 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287486
|
- |
|
apache
|
subversion
|
svnwcsub.py in Subversion 1.8.0 before 1.8.3, when using the --pidfile option and running in foreground mode, allows local users to gain privileges via a symlink attack on the pid file. NOTE: this i…
|
CWE-59
Link Following
|
CVE-2013-4262
|
2024-11-21 10:55 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287487
|
- |
|
apache
|
http_server
|
The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a …
|
NVD-CWE-Other
|
CVE-2013-4352
|
2024-11-21 10:55 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287488
|
- |
|
entity_api_project
|
entity_api
|
The Entity API module 7.x-1.x before 7.x-1.2 for Drupal does not properly restrict access to node comments, which allows remote authenticated users to read the comments via unspecified vectors. NOTE:…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4273
|
2024-11-21 10:55 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287489
|
- |
|
misery_project
|
misery
|
The Misery module 6.x-2.x before 6.x-2.5 and 7.x-2.x before 7.x-2.2 for Drupal, when the "delay misery" configuration is set to a high value, allows remote attackers to cause a denial of service (pro…
|
CWE-399
Resource Management Errors
|
CVE-2013-4599
|
2024-11-21 10:55 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287490
|
- |
|
rik_de_boer
|
revisioning
|
The Revisioning module 7.x-1.x before 7.x-1.6 for Drupal does not properly check node access permissions for content marked unpublished by the Scheduled module, which allows remote authenticated user…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4597
|
2024-11-21 10:55 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
