|
290421
|
9.8 |
CRITICAL
Network
|
cubecart
|
cubecart
|
The Cubecart::_basket method in classes/cubecart.class.php in CubeCart 5.0.0 through 5.2.0 allows remote attackers to unserialize arbitrary PHP objects via a crafted shipping parameter, as demonstrat…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2013-1465
|
2024-11-21 10:49 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290422
|
- |
|
doryphores
|
audio_player
|
Cross-site scripting (XSS) vulnerability in assets/player.swf in the Audio Player plugin before 2.0.4.6 for Wordpress allows remote attackers to inject arbitrary web script or HTML via the playerID p…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1464
|
2024-11-21 10:49 |
2013-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290423
|
- |
|
wp-table_reloaded_project
|
wp-table_reloaded
|
Cross-site scripting (XSS) vulnerability in js/tabletools/zeroclipboard.swf in the WP-Table Reloaded module before 1.9.4 for Wordpress allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1463
|
2024-11-21 10:49 |
2013-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290424
|
- |
|
fortinet
|
fortimail
|
Multiple cross-site scripting (XSS) vulnerabilities in admin/FEAdmin.html in Fortinet FortiMail before 4.3.4 on FortiMail Identity-Based Encryption (IBE) appliances allow user-assisted remote attacke…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1471
|
2024-11-21 10:49 |
2013-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290425
|
- |
|
wireshark
|
wireshark
|
Buffer overflow in the NTLMSSP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1590
|
2024-11-21 10:49 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290426
|
- |
|
wireshark
|
wireshark
|
Double free vulnerability in epan/proto.c in the dissection engine in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via…
|
CWE-399
Resource Management Errors
|
CVE-2013-1589
|
2024-11-21 10:49 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290427
|
- |
|
wireshark
|
wireshark
|
Multiple buffer overflows in the dissect_pft_fec_detailed function in the DCP-ETSI dissector in epan/dissectors/packet-dcp-etsi.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allow remote …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1588
|
2024-11-21 10:49 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290428
|
- |
|
wireshark
|
wireshark
|
The dissect_rohc_ir_packet function in epan/dissectors/packet-rohc.c in the ROHC dissector in Wireshark 1.8.x before 1.8.5 does not properly handle unknown profiles, which allows remote attackers to …
|
NVD-CWE-noinfo
|
CVE-2013-1587
|
2024-11-21 10:49 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290429
|
- |
|
wireshark
|
wireshark
|
The fragment_set_tot_len function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly determine the length of a reassembled packet for the DTLS dissector, w…
|
NVD-CWE-noinfo
|
CVE-2013-1586
|
2024-11-21 10:49 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290430
|
- |
|
wireshark
|
wireshark
|
epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly validate certain length values for the MS-MMC dissector, which allows remote attackers to cause a denial of ser…
|
CWE-20
Improper Input Validation
|
CVE-2013-1585
|
2024-11-21 10:49 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
