|
289811
|
- |
|
click2sell
|
click2sell_suite_module
|
Cross-site request forgery (CSRF) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete datab…
|
CWE-352
Origin Validation Error
|
CVE-2013-5937
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289812
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 allows remote attackers to obtain sensitive information about (1) runtime activity, (2) networ…
|
CWE-200
Information Exposure
|
CVE-2013-5936
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289813
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 does not properly restrict the set of network interfaces that can receive API calls, which mak…
|
CWE-200
Information Exposure
|
CVE-2013-5935
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289814
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 has a hardcoded password for node join operations, which allows remote attackers to expand a cluster by finding this passwo…
|
CWE-255
Credentials Management
|
CVE-2013-5934
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289815
|
- |
|
google
motorola
|
android
defy_xt
|
Stack-based buffer overflow in the sub_E110 function in init in a certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless allows local users to gain privileges or c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5933
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289816
|
- |
|
friends_of_symfony_project
|
fosuserbundle
|
The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service (CPU consumption) via a long password that triggers an expens…
|
CWE-399
Resource Management Errors
|
CVE-2013-5750
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289817
|
- |
|
tenable
|
securitycenter
|
Cross-site scripting (XSS) vulnerability in devform.php in Tenable SecurityCenter 4.6 through 4.7 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5911
|
2024-11-21 10:58 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289818
|
- |
|
sophos
|
unified_threat_management_software
|
Unspecified vulnerability in WebAdmin in Sophos UTM (aka Astaro Security Gateway) before 9.105 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5932
|
2024-11-21 10:58 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289819
|
- |
|
real-estate-php-script
|
real_estate_php_script
|
SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote attackers to execute arbitrary SQL commands via the listingid parameter.
|
CWE-89
SQL Injection
|
CVE-2013-5931
|
2024-11-21 10:58 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289820
|
- |
|
real-estate-php-script
|
real_estate_php_script
|
Cross-site scripting (XSS) vulnerability in search_residential.php in Real Estate PHP Script allows remote attackers to inject arbitrary web script or HTML via the bos parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5930
|
2024-11-21 10:58 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
