|
289051
|
- |
|
huawei
|
vp_9610
vp_9620
|
The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated us…
|
CWE-255
Credentials Management
|
CVE-2013-4629
|
2024-11-21 10:55 |
2013-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289052
|
- |
|
huawei
|
quidway_service_process_unit_board_s9300
quidway_service_process_unit_board_s7700
quidway_service_process_unit_board_s9700
|
The firewall module on the Huawei Quidway Service Process Unit (SPU) board S7700, S9300, and S9700 on Huawei Campus Switch devices allows remote authenticated users to obtain sensitive information fr…
|
CWE-200
Information Exposure
|
CVE-2013-4628
|
2024-11-21 10:55 |
2013-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289053
|
- |
|
htc
|
droid_incredible
|
The 3G Mobile Hotspot feature on the HTC Droid Incredible has a default WPA2 PSK passphrase of 1234567890, which makes it easier for remote attackers to obtain access by leveraging a position within …
|
CWE-255
Credentials Management
|
CVE-2013-4622
|
2024-11-21 10:55 |
2013-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289054
|
- |
|
apple
|
iphone_os
|
The WifiPasswordController generateDefaultPassword method in Preferences in Apple iOS 6 and earlier relies on the UITextChecker suggestWordInLanguage method for selection of Wi-Fi hotspot WPA2 PSK pa…
|
CWE-255
Credentials Management
|
CVE-2013-4616
|
2024-11-21 10:55 |
2013-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289055
|
- |
|
project-redcap
vanderbilt
|
redcap
|
Multiple cross-site scripting (XSS) vulnerabilities in REDCap before 5.1.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving different modules.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4612
|
2024-11-21 10:55 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289056
|
- |
|
project-redcap
vanderbilt
|
redcap
|
Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving (1) the Online Designer page or (2) the Manage Survey Participants p…
|
NVD-CWE-noinfo
|
CVE-2013-4611
|
2024-11-21 10:55 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289057
|
- |
|
project-redcap
vanderbilt
|
redcap
|
Unspecified vulnerability in the Data Search utility in data-entry forms in REDCap before 5.0.3 and 5.1.x before 5.1.2 has unknown impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2013-4610
|
2024-11-21 10:55 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289058
|
- |
|
project-redcap
vanderbilt
|
redcap
|
REDCap before 5.0.4 and 5.1.x before 5.1.3 does not reject certain undocumented syntax within branching logic and calculations, which allows remote authenticated users to bypass intended access restr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4609
|
2024-11-21 10:55 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289059
|
- |
|
project-redcap
vanderbilt
|
redcap
|
Cross-site scripting (XSS) vulnerability in REDCap before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via vectors involving the Graphical Data View & Descriptive Stats page.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4608
|
2024-11-21 10:55 |
2013-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289060
|
9.8 |
CRITICAL
Network
|
swfupload_project
|
swfupload
|
There is an object injection vulnerability in swfupload plugin for wordpress.
|
CWE-74
Injection
|
CVE-2013-4144
|
2024-11-21 10:54 |
2022-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
