|
289481
|
- |
|
qianqin
|
qtranslate
|
Cross-site request forgery (CSRF) vulnerability in the qTranslate plugin 2.5.34 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that chan…
|
CWE-352
Origin Validation Error
|
CVE-2013-3251
|
2024-11-21 10:53 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289482
|
- |
|
dotcms
|
dotcms
|
Multiple cross-site scripting (XSS) vulnerabilities in dotCMS before 2.3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) _loginUserName parameter to application/login/logi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3484
|
2024-11-21 10:53 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289483
|
- |
|
vtiger
|
vtiger_crm
|
Multiple SQL injection vulnerabilities in vTiger CRM 5.0.0 through 5.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) picklist_name parameter in the get_picklists method to so…
|
CWE-89
SQL Injection
|
CVE-2013-3213
|
2024-11-21 10:53 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289484
|
- |
|
zyxel
|
p-660h-63
p-660hw_d1
p-660hw_t3
p-660hw
p-660h-61
p-660h-t1
p-660h-67
p-660h-t3
p-660hw_d3
p-660h-d3
p-660h-d1
|
The web management interface on Zyxel P660 devices allows remote attackers to cause a denial of service (reboot) via a flood of TCP SYN packets.
|
CWE-20
Improper Input Validation
|
CVE-2013-3588
|
2024-11-21 10:53 |
2014-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289485
|
- |
|
b-e-soft
|
artweaver_plus
artweaver_free
|
Stack-based buffer overflow in Artweaver Plus and Free before 3.1.5 allows remote attackers to execute arbitrary code via a crafted JPG image file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3481
|
2024-11-21 10:53 |
2014-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289486
|
- |
|
solarwinds
|
dameware_remote_support
|
Stack-based buffer overflow in the "Add from text file" feature in the DameWare Exporter tool (DWExporter.exe) in DameWare Remote Support 10.0.0.372, 9.0.1.247, and earlier allows user-assisted attac…
|
CWE-787
Out-of-bounds Write
|
CVE-2013-3249
|
2024-11-21 10:53 |
2014-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289487
|
- |
|
apptha
|
video_gallery_plugin
|
SQL injection vulnerability in Apptha WordPress Video Gallery 2.0, 1.6, and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the playid parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2013-3478
|
2024-11-21 10:53 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289488
|
- |
|
ait-pro
|
bulletproof-security
|
Multiple cross-site scripting (XSS) vulnerabilities in the security log in the BulletProof Security plugin before .49 for WordPress allow remote attackers to inject arbitrary web script or HTML via u…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3487
|
2024-11-21 10:53 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289489
|
- |
|
inmatrix
|
zoom_player
|
Heap-based buffer overflow in INMATRIX Zoom Player before 8.7 beta 11 allows remote attackers to execute arbitrary code via a large biClrUsed value in a BMP file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3260
|
2024-11-21 10:53 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289490
|
- |
|
inmatrix
|
zoom_player
|
Stack-based buffer overflow in INMATRIX Zoom Player before 8.7 beta 11 allows remote attackers to execute arbitrary code via a large biClrUsed value in a BMP file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3259
|
2024-11-21 10:53 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
