|
288361
|
- |
|
springsignage
|
xibo
|
SQL injection vulnerability in index.php in Digital Signage Xibo 1.4.2 allows remote attackers to execute arbitrary SQL commands via the displayid parameter.
|
CWE-89
SQL Injection
|
CVE-2013-4887
|
2024-11-21 10:56 |
2014-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288362
|
- |
|
civicrm
|
civicrm
|
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to …
|
CWE-89
SQL Injection
|
CVE-2013-4662
|
2024-11-21 10:56 |
2014-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288363
|
- |
|
civicrm
|
civicrm
|
CiviCRM 2.0.0 through 4.2.9 and 4.3.0 through 4.3.3 does not properly enforce role-based access control (RBAC) restrictions for default custom searches, which allows remote authenticated users with t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4661
|
2024-11-21 10:56 |
2014-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288364
|
- |
|
mcafee
|
superscan
|
Cross-site scripting (XSS) vulnerability in McAfee SuperScan 4.0 allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded sequences in a server response, which is not properly…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4884
|
2024-11-21 10:56 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288365
|
- |
|
atmail
|
atmail
|
Unspecified vulnerability in Atmail before 6.6.4, and 7.x before 7.1.2, has unknown impact and attack vectors, a different vulnerability than CVE-2013-5031, CVE-2013-5032, and CVE-2013-5033.
|
NVD-CWE-noinfo
|
CVE-2013-5034
|
2024-11-21 10:56 |
2014-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288366
|
- |
|
atmail
|
atmail
|
Unspecified vulnerability in Atmail before 6.6.4, and 7.x before 7.1.2, has unknown impact and attack vectors, a different vulnerability than CVE-2013-5031, CVE-2013-5032, and CVE-2013-5034.
|
NVD-CWE-noinfo
|
CVE-2013-5033
|
2024-11-21 10:56 |
2014-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288367
|
- |
|
atmail
|
atmail
|
Unspecified vulnerability in Atmail before 6.6.4, and 7.x before 7.1.2, has unknown impact and attack vectors, a different vulnerability than CVE-2013-5031, CVE-2013-5033, and CVE-2013-5034.
|
NVD-CWE-noinfo
|
CVE-2013-5032
|
2024-11-21 10:56 |
2014-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288368
|
- |
|
atmail
|
atmail
|
Unspecified vulnerability in Atmail before 6.6.4, and 7.x before 7.1.2, has unknown impact and attack vectors, a different vulnerability than CVE-2013-5032, CVE-2013-5033, and CVE-2013-5034.
|
NVD-CWE-noinfo
|
CVE-2013-5031
|
2024-11-21 10:56 |
2014-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288369
|
- |
|
symantec
|
endpoint_protection
|
Unquoted Windows search path vulnerability in the client in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x befo…
|
CWE-22
Path Traversal
|
CVE-2013-5011
|
2024-11-21 10:56 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288370
|
- |
|
symantec
|
endpoint_protection
|
The Application/Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5010
|
2024-11-21 10:56 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
