|
288981
|
6.5 |
MEDIUM
Network
|
otrs
|
otrs
otrs_itsm
|
Kernel/Modules/AgentTicketPhone.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.20, 3.1.x before 3.1.16, and 3.2.x before 3.2.7, and OTRS ITSM 3.0.x before 3.0.8, 3.1.x before 3.1.9, and 3.2…
|
CWE-200
Information Exposure
|
CVE-2013-3551
|
2024-11-21 10:53 |
2020-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288982
|
9.8 |
CRITICAL
Network
|
ibm
|
maximo_asset_management_essentials
maximo_for_transportation
maximo_for_utilities
maximo_for_nuclear_power
tivoli_service_request_manager
maximo_asset_management
smartcloud_control_…
|
A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session…
|
CWE-269
Improper Privilege Management
|
CVE-2013-3323
|
2024-11-21 10:53 |
2020-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288983
|
7.8 |
HIGH
Local
|
umplayer_project
|
umplayer
|
A Code Execution Vulnerability exists in UMPlayer 0.98 in wintab32.dll due to insufficient path restrictions when loading external libraries. which could let a malicious user execute arbitrary code.
|
CWE-426
Untrusted Search Path
|
CVE-2013-3494
|
2024-11-21 10:53 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288984
|
8.8 |
HIGH
Network
|
vtiger
|
vtiger_crm
|
vTiger CRM 5.3 and 5.4: 'files' Upload Folder Arbitrary PHP Code Execution Vulnerability
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2013-3591
|
2024-11-21 10:53 |
2020-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288985
|
8.8 |
HIGH
Network
|
cisco
|
linksys_wrt110_firmware
|
Cross-site request forgery (CSRF) vulnerability in Cisco Linksys WRT110 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2013-3568
|
2024-11-21 10:53 |
2020-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288986
|
5.3 |
MEDIUM
Network
|
videolan
|
vlc_media_player
|
The web interface in VideoLAN VLC media player before 2.0.7 has no access control which allows remote attackers to view directory listings via the 'dir' command or issue other commands without authen…
|
CWE-200
Information Exposure
|
CVE-2013-3564
|
2024-11-21 10:53 |
2020-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288987
|
6.1 |
MEDIUM
Network
|
videolan
opensuse
|
vlc_media_player
opensuse
|
Multiple cross-site scripting (XSS) vulnerabilities in the HTTP Interface in VideoLAN VLC Media Player before 2.0.7 allow remote attackers to inject arbitrary web script or HTML via the (1) command p…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3565
|
2024-11-21 10:53 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288988
|
7.8 |
HIGH
Local
|
mpc-hc
|
mpc-hc
|
Buffer overflow in Media Player Classic - Home Cinema (MPC-HC) before 1.7.0 allows remote attackers to execute arbitrary code via a crafted RealMedia .rm file
|
CWE-120
Classic Buffer Overflow
|
CVE-2013-3489
|
2024-11-21 10:53 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288989
|
7.8 |
HIGH
Local
|
mpc-hc
|
mpc-hc
|
Stack-based buffer overflow in Media Player Classic - Home Cinema (MPC-HC) before 1.7.0.7858 allows remote attackers to execute arbitrary code via a crafted MPEG-2 Transport Stream (M2TS) file.
|
CWE-120
Classic Buffer Overflow
|
CVE-2013-3488
|
2024-11-21 10:53 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288990
|
7.2 |
HIGH
Network
|
netapp
|
oncommand_system_manager
|
NetApp OnCommand System Manager 2.1 and earlier allows remote attackers to inject arbitrary commands in the Halt/Reboot interface.
|
CWE-78
OS Command
|
CVE-2013-3322
|
2024-11-21 10:53 |
2020-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
