|
286001
|
- |
|
ibm
|
websphere_portal
|
Cross-site scripting (XSS) vulnerability in the Web Content Manager (WCM) UI in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6328
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286002
|
- |
|
quickheal
|
antivirus_pro
|
Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users to execute arbitrary code or cause a denial of service (process crash) via a long *.text value in a PE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6767
|
2024-11-21 10:59 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286003
|
- |
|
realnetworks
|
realplayer
|
Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TR…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6877
|
2024-11-21 10:59 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286004
|
- |
|
ibm
|
db2_connect
db2
db2_purescale_feature_9.8
|
The OLAP query engine in IBM DB2 and DB2 Connect 9.7 through FP9, 9.8 through FP5, 10.1 through FP3, and 10.5 through FP2, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remo…
|
NVD-CWE-noinfo
|
CVE-2013-6717
|
2024-11-21 10:59 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286005
|
- |
|
no-margin-for-errors
|
prettyphoto
|
Cross-site scripting (XSS) vulnerability in the setTimeout function in js/jquery.prettyPhoto.js in prettyPhoto 3.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via a c…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6837
|
2024-11-21 10:59 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286006
|
- |
|
gnome
|
gnumeric
|
Heap-based buffer overflow in the ms_escher_get_data function in plugins/excel/ms-escher.c in GNOME Office Gnumeric before 1.12.9 allows remote attackers to cause a denial of service (crash) via a cr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6836
|
2024-11-21 10:59 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286007
|
- |
|
zabbix
|
zabbix
|
Zabbix before 1.8.19rc1, 2.0 before 2.0.10rc1, and 2.2 before 2.2.1rc1 allows remote Zabbix servers and proxies to execute arbitrary commands via a newline in a flexible user parameter.
|
CWE-94
Code Injection
|
CVE-2013-6824
|
2024-11-21 10:59 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286008
|
- |
|
cisco
|
cisco_ons_15454_system_software
ons_15454_mspp
ons_15454_mstp
ons_15454e_optical_transport_platform
ons_15454
ons_15454_multiservice_transport_platform
ons_15454_sdh_multiservice_pr…
|
The tNetTaskLimit process on the Transport Node Controller (TNC) on Cisco ONS 15454 devices with software 9.6 and earlier does not properly prioritize health pings, which allows remote attackers to c…
|
CWE-20
Improper Input Validation
|
CVE-2013-6701
|
2024-11-21 10:59 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286009
|
- |
|
cru-inc
|
ditto_forensic_fieldstation_firmware
ditto_forensic_fieldstation
|
Cross-site request forgery (CSRF) vulnerability in CRU Ditto Forensic FieldStation with firmware before 2013Oct15a allows remote attackers to hijack the authentication of administrators for requests …
|
CWE-352
Origin Validation Error
|
CVE-2013-6883
|
2024-11-21 10:59 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286010
|
- |
|
cru-inc
|
ditto_forensic_fieldstation_firmware
ditto_forensic_fieldstation
|
Multiple cross-site scripting (XSS) vulnerabilities in CRU Ditto Forensic FieldStation with firmware 2013Oct15a and earlier allow (1) remote attackers to inject arbitrary web script or HTML via the u…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6882
|
2024-11-21 10:59 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
