|
291291
|
- |
|
graphite_project
|
graphite
|
Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, related to (1) remote_storage.py, (2) st…
|
CWE-94
Code Injection
|
CVE-2013-5942
|
2024-11-21 10:58 |
2013-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291292
|
- |
|
click2sell
|
click2sell_suite_module
|
Cross-site scripting (XSS) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a confirmation form.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5938
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291293
|
- |
|
click2sell
|
click2sell_suite_module
|
Cross-site request forgery (CSRF) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete datab…
|
CWE-352
Origin Validation Error
|
CVE-2013-5937
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291294
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 allows remote attackers to obtain sensitive information about (1) runtime activity, (2) networ…
|
CWE-200
Information Exposure
|
CVE-2013-5936
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291295
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 does not properly restrict the set of network interfaces that can receive API calls, which mak…
|
CWE-200
Information Exposure
|
CVE-2013-5935
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291296
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 has a hardcoded password for node join operations, which allows remote attackers to expand a cluster by finding this passwo…
|
CWE-255
Credentials Management
|
CVE-2013-5934
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291297
|
- |
|
google
motorola
|
android
defy_xt
|
Stack-based buffer overflow in the sub_E110 function in init in a certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless allows local users to gain privileges or c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5933
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291298
|
- |
|
friends_of_symfony_project
|
fosuserbundle
|
The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service (CPU consumption) via a long password that triggers an expens…
|
CWE-399
Resource Management Errors
|
CVE-2013-5750
|
2024-11-21 10:58 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291299
|
- |
|
tenable
|
securitycenter
|
Cross-site scripting (XSS) vulnerability in devform.php in Tenable SecurityCenter 4.6 through 4.7 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5911
|
2024-11-21 10:58 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291300
|
- |
|
sophos
|
unified_threat_management_software
|
Unspecified vulnerability in WebAdmin in Sophos UTM (aka Astaro Security Gateway) before 9.105 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5932
|
2024-11-21 10:58 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
