|
290731
|
- |
|
wireshark
opensuse
|
wireshark
opensuse
|
The TCP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
NVD-CWE-noinfo
|
CVE-2013-2475
|
2024-11-21 10:51 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290732
|
- |
|
ffmpeg
|
ffmpeg
|
The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 1.1.3 does not validate the relationship between luma depth and chroma depth, which allows remote attackers t…
|
NVD-CWE-Other
|
CVE-2013-2277
|
2024-11-21 10:51 |
2013-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290733
|
- |
|
ffmpeg
|
ffmpeg
|
The avcodec_decode_audio4 function in utils.c in libavcodec in FFmpeg before 1.1.3 does not verify the decoding state before proceeding with certain skip operations, which allows remote attackers to …
|
NVD-CWE-Other
|
CVE-2013-2276
|
2024-11-21 10:51 |
2013-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290734
|
- |
|
google
|
chrome
|
Unspecified vulnerability in the MathML implementation in WebKit in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, has unknown impact and remote attack v…
|
NVD-CWE-noinfo
|
CVE-2013-2268
|
2024-11-21 10:51 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290735
|
8.8 |
HIGH
Network
|
user_photo_project
|
user_photo
|
In WordPress Plugin User Photo 0.9.4, when a photo is uploaded, it is only partially validated and it is possible to upload a backdoor on the server hosting WordPress. This backdoor can be called (ex…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2013-1916
|
2024-11-21 10:50 |
2022-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290736
|
6.5 |
MEDIUM
Network
|
opencart
|
opencart
|
In OpenCart 1.4.7 to 1.5.5.1, implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.
|
CWE-22
Path Traversal
|
CVE-2013-1891
|
2024-11-21 10:50 |
2022-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290737
|
9.8 |
CRITICAL
Network
|
starwindsoftware
|
iscsi_san
|
A flaw was found in StarWind iSCSI target. StarWind service does not limit client connections and allocates memory on each connection attempt. An attacker could create a denial of service state by tr…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2013-20004
|
2024-11-21 10:50 |
2022-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290738
|
8.3 |
HIGH
Adjacent
|
silabs
|
zgm130s037hgn_firmware
zm5202_firmware
zm5101_firmware
zgm2305a27hgn_firmware
zgm230sb27hgn_firmware
|
Z-Wave devices from Sierra Designs (circa 2013) and Silicon Labs (using S0 security) may use a known, shared network key of all zeros, allowing an attacker within radio range to spoof Z-Wave traffic.
|
CWE-338
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
|
CVE-2013-20003
|
2024-11-21 10:50 |
2022-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290739
|
9.8 |
CRITICAL
Network
|
themify
|
framework
|
Elemin allows remote attackers to upload and execute arbitrary PHP code via the Themify framework (before 1.2.2) wp-content/themes/elemin/themify/themify-ajax.php file.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2013-20002
|
2024-11-21 10:50 |
2021-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290740
|
7.5 |
HIGH
Network
|
openzfs
|
openzfs
|
An issue was discovered in OpenZFS through 2.0.3. When an NFS share is exported to IPv6 addresses via the sharenfs feature, there is a silent failure to parse the IPv6 address data, and access is all…
|
NVD-CWE-noinfo
|
CVE-2013-20001
|
2024-11-21 10:50 |
2021-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
