|
287601
|
- |
|
digium
|
asterisk
asterisk_digiumphones
certified_asterisk
|
Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x before 1.8.24.1, 10.x before 10.12.4, and 11.x before 11.6.1; Asterisk with Digiumphones 10.x-digiumphones …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7100
|
2024-11-21 11:00 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287602
|
- |
|
cisco
|
epc3925
|
Cross-site request forgery (CSRF) vulnerability in goform/Quick_setup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of administrators for requests that change a passwo…
|
CWE-352
Origin Validation Error
|
CVE-2013-6976
|
2024-11-21 11:00 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287603
|
- |
|
webbynode
|
webbynode
|
The message function in lib/webbynode/notify.rb in the Webbynode gem 1.0.5.3 and earlier for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a growln…
|
CWE-94
Code Injection
|
CVE-2013-7086
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287604
|
- |
|
mike_stefanello
|
og_features
|
The OG Features module 6.x-1.x before 6.x-1.4 for Drupal does not properly override pages that have an access callback set to false, which allows remote attackers to bypass intended access restrictio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7067
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287605
|
- |
|
dlink
|
dsr-150_firmware
dsr-150
dsr-250_firmware
dsr-250
dsr-1000n_firmware
dsr-1000n
dsr-150n_firmware
dsr-150n
dsr-500_firmware
dsr-500
dsr-1000_firmware
dsr-1000
dsr-2…
|
D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware bef…
|
CWE-200
Information Exposure
|
CVE-2013-7005
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287606
|
- |
|
dlink
|
dsr-500_firmware
dsr-500
dsr-150n_firmware
dsr-150n
dsr-250n_firmware
dsr-150_firmware
dsr-150
dsr-500n_firmware
dsr-500n
dsr-1000n_firmware
dsr-1000n
dsr-250_firmwar…
|
D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware bef…
|
CWE-255
Credentials Management
|
CVE-2013-7004
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287607
|
- |
|
themebeans
|
blooog_theme
|
Cross-site scripting (XSS) vulnerability in ThemeBeans Blooog theme 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the jQuery parameter to assets/js/jplayer.swf.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7129
|
2024-11-21 11:00 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287608
|
- |
|
valvesoftware
|
steamos
|
Valve Bug Reporter in the valve-bugreporter package 2.10+bsos1 in Valve SteamOS Beta stores cleartext credentials in a .valve-bugreporter.cfg file upon a Remember Credentials action, which allows loc…
|
CWE-310
Cryptographic Issues
|
CVE-2013-7128
|
2024-11-21 11:00 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287609
|
- |
|
apple
|
safari
mac_os_x
|
Apple Safari 6.0.5 on Mac OS X 10.7.5 and 10.8.5 stores cleartext credentials in LastSession.plist, which allows local users to obtain sensitive information by reading this file.
|
CWE-310
Cryptographic Issues
|
CVE-2013-7127
|
2024-11-21 11:00 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287610
|
- |
|
cisco
|
webex_training_center
|
Open redirect vulnerability in Cisco WebEx Training Center allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCul36031.
|
CWE-20
Improper Input Validation
|
CVE-2013-6966
|
2024-11-21 11:00 |
2013-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
