|
289711
|
- |
|
kolja_schleich
|
leaguemanager
|
SQL injection vulnerability in leaguemanager.php in the LeagueManager plugin before 3.8.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the league_id parameter in the le…
|
CWE-89
SQL Injection
|
CVE-2013-1852
|
2024-11-21 10:50 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289712
|
- |
|
almanah_project
|
almanah
|
Almanah Diary 0.9.0 and 0.10.0 does not encrypt the database when closed, which allows local users to obtain sensitive information by reading the database.
|
CWE-310
Cryptographic Issues
|
CVE-2013-1853
|
2024-11-21 10:50 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289713
|
- |
|
redhat
|
dogtag_certificate_system
certificate_system
|
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate System (RHCS) 8.1 and possibly Dogtag Certificate System 9 and 10 allows remote authenticated users to caus…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2013-1886
|
2024-11-21 10:50 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289714
|
- |
|
redhat
|
dogtag_certificate_system
certificate_system
|
Multiple cross-site scripting (XSS) vulnerabilities in the token processing system (pki-tps) in Red Hat Certificate System (RHCS) 8.1 and possibly Dogtag Certificate System 9 and 10 allow remote atta…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1885
|
2024-11-21 10:50 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289715
|
- |
|
linux-nfs
|
nfs-utils
|
rpc-gssd in nfs-utils before 1.2.8 performs reverse DNS resolution for server names during GSSAPI authentication, which might allow remote attackers to read otherwise-restricted files via DNS spoofin…
|
CWE-200
Information Exposure
|
CVE-2013-1923
|
2024-11-21 10:50 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289716
|
- |
|
simon_mcvittie
|
telepathy_gabble
|
A certain hashing algorithm in Telepathy Gabble 0.16.x before 0.16.5 and 0.17.x before 0.17.3 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted m…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1769
|
2024-11-21 10:50 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289717
|
- |
|
mozilla
|
network_security_services
|
The ssl_Do1stHandshake function in sslsecur.c in libssl in Mozilla Network Security Services (NSS) before 3.15.4, when the TLS False Start feature is enabled, allows man-in-the-middle attackers to sp…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1740
|
2024-11-21 10:50 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289718
|
- |
|
canonical
httplib2_project
|
ubuntu_linux
httplib2
|
httplib2 0.7.2, 0.8, and earlier, after an initial connection is made, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the …
|
CWE-20
Improper Input Validation
|
CVE-2013-2037
|
2024-11-21 10:50 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289719
|
- |
|
redhat
|
cloudforms_management_engine
manageiq_enterprise_virtualization_manager
|
SQL injection vulnerability in the miq_policy controller in Red Hat CloudForms 2.0 Management Engine (CFME) 5.1 and ManageIQ Enterprise Virtualization Manager 5.0 and earlier allows remote authentica…
|
CWE-89
SQL Injection
|
CVE-2013-2050
|
2024-11-21 10:50 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289720
|
- |
|
openstack
|
compute
grizzly
havana
folsom
|
keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing certificates, which allows local users to spoof servers by pre…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2030
|
2024-11-21 10:50 |
2013-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
