|
287091
|
- |
|
google
apache
|
android
harmony
|
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache …
|
CWE-310
Cryptographic Issues
|
CVE-2013-7372
|
2024-11-21 11:00 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287092
|
- |
|
ubercart
|
ubercart
|
Session fixation vulnerability in the Ubercart module 6.x-2.x before 6.x-2.13 and 7.x-3.x before 7.x-3.6 for Drupal, when the "Log in new customers after checkout" option is enabled, allows remote at…
|
CWE-287
Improper Authentication
|
CVE-2013-7302
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287093
|
- |
|
malcolm_nooning
|
pirpc
|
The PlRPC module, possibly 0.2020 and earlier, for Perl uses the Storable module, which allows remote attackers to execute arbitrary code via a crafted request, which is not properly handled when it …
|
CWE-94
Code Injection
|
CVE-2013-7284
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287094
|
- |
|
gnome
|
gnome_display_manager
|
GNOME Display Manager (gdm) 3.4.1 and earlier, when disable-user-list is set to true, allows local users to cause a denial of service (unable to login) by pressing the cancel button after entering a …
|
NVD-CWE-noinfo
|
CVE-2013-7273
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287095
|
- |
|
neo4j
|
neo4j
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Neo4J 1.9.2 allow remote attackers to hijack the authentication of administrators for requests that execute arbitrary code, as demonstrat…
|
CWE-352
CWE-78
Origin Validation Error
OS Command
|
CVE-2013-7259
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287096
|
- |
|
simplemachines
|
simple_machines_forum
|
Simple Machines Forum (SMF) 2.0.6, 1.1.19, and earlier allows remote attackers to impersonate arbitrary users via a Unicode homoglyph character in a username.
|
CWE-20
Improper Input Validation
|
CVE-2013-7236
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287097
|
- |
|
simplemachines
|
simple_machines_forum
|
Simple Machines Forum (SMF) before 1.1.19 and 2.x before 2.0.6 allows remote attackers to impersonate arbitrary users via multiple space characters characters.
|
CWE-20
Improper Input Validation
|
CVE-2013-7235
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287098
|
- |
|
simplemachines
|
simple_machines_forum
|
Simple Machines Forum (SMF) before 1.1.19 and 2.x before 2.0.6 allows remote attackers to conduct clickjacking attacks via an X-Frame-Options header.
|
CWE-20
Improper Input Validation
|
CVE-2013-7234
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287099
|
- |
|
gnome
|
gnome-shell
|
The automatic screen lock functionality in GNOME Shell (aka gnome-shell) before 3.10 does not prevent access to the "Enter a Command" dialog, which allows physically proximate attackers to execute ar…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7221
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287100
|
- |
|
gnome
|
gnome-shell
|
js/ui/screenShield.js in GNOME Shell (aka gnome-shell) before 3.8 allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation with the keyboard focus o…
|
NVD-CWE-Other
|
CVE-2013-7220
|
2024-11-21 11:00 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
