|
287261
|
- |
|
freebsd
|
freebsd
|
The qls_eioctl function in sys/dev/qlxge/qls_ioctl.c in the kernel in FreeBSD 10 and earlier does not validate a certain size parameter, which allows local users to obtain sensitive information from …
|
CWE-20
Improper Input Validation
|
CVE-2013-6833
|
2024-11-21 10:59 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287262
|
- |
|
freebsd
|
freebsd
|
The nand_ioctl function in sys/dev/nand/nand_geom.c in the nand driver in the kernel in FreeBSD 10 and earlier does not properly initialize a certain data structure, which allows local users to obtai…
|
CWE-200
Information Exposure
|
CVE-2013-6832
|
2024-11-21 10:59 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287263
|
- |
|
pineapp
|
mail-secure_5099sk
|
PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms has a sudoers file that does not properly restrict user specifications, which allows local users to gain privileges via a sudo com…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6831
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287264
|
- |
|
pineapp
|
mail-secure_5099sk
|
admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms allows remote attackers to execute arbitrary commands via shell metacharacters in the nsserver parame…
|
CWE-94
Code Injection
|
CVE-2013-6830
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287265
|
- |
|
pineapp
|
mail-secure
|
admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation.
|
CWE-94
Code Injection
|
CVE-2013-6829
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287266
|
- |
|
pineapp
|
mail-secure
|
admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication and perform a sys_usermng operation via the it parameter.
|
CWE-287
Improper Authentication
|
CVE-2013-6828
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287267
|
- |
|
pineapp
|
mail-secure
|
Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows remote attackers to read arbitrary files via a full pathname in the msg parameter.
|
CWE-22
Path Traversal
|
CVE-2013-6827
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287268
|
- |
|
fortinet
|
fortianalyzer_firmware
fortianalyzer-1000d
fortianalyzer-2000b
fortianalyzer-200d
fortianalyzer-3000d
fortianalyzer-300d
fortianalyzer-4000b
|
cgi-bin/module//sysmanager/admin/SYSAdminUserDialog in Fortinet FortiAnalyzer before 5.0.5 does not properly validate the csrf_token parameter, which allows remote attackers to perform cross-site req…
|
CWE-352
Origin Validation Error
|
CVE-2013-6826
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287269
|
- |
|
sap
|
netweaver
|
GRMGApp in SAP NetWeaver allows remote attackers to bypass intended access restrictions via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6823
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287270
|
- |
|
sap
|
netweaver
|
GRMGApp in SAP NetWeaver allows remote attackers to have unspecified impact and attack vectors, related to an XML External Entity (XXE) issue.
|
NVD-CWE-noinfo
|
CVE-2013-6822
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
