|
294171
|
- |
|
hp
|
storage_data_protector
|
Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1629.
|
NVD-CWE-noinfo
|
CVE-2013-2324
|
2024-11-21 10:51 |
2013-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294172
|
- |
|
jig
|
movatwitouch_paid
movatwitouch
|
The Content Provider in the MovatwiTouch application before 1.793 and MovatwiTouch Paid application before 1.793 for Android does not properly restrict access to authorization information, which allo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2318
|
2024-11-21 10:51 |
2013-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294173
|
- |
|
fenrir-inc
|
sleipnir_mobile
|
The Sleipnir Mobile application 2.9.1 and earlier and Sleipnir Mobile Black Edition application 2.9.1 and earlier for Android allow remote attackers to spoof the address bar via vectors involving the…
|
NVD-CWE-noinfo
|
CVE-2013-2317
|
2024-11-21 10:51 |
2013-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294174
|
- |
|
yahoo
|
yahoo\!_browser
|
The Yahoo! Browser application 1.4.4 and earlier for Android allows remote attackers to spoof the address bar via vectors related to URL display, a different vulnerability than CVE-2013-2307.
|
NVD-CWE-noinfo
|
CVE-2013-2316
|
2024-11-21 10:51 |
2013-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294175
|
- |
|
lockon
|
ec-cube
|
data/class/pages/forgot/LC_Page_Forgot.php in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 does not properly validate the input to the password reminder function, which allows remote attackers to obtain …
|
CWE-20
Improper Input Validation
|
CVE-2013-2315
|
2024-11-21 10:51 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294176
|
- |
|
lockon
|
ec-cube
|
Cross-site scripting (XSS) vulnerability in the adminAuthorization function in data/class/helper/SC_Helper_Session.php in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 allows remote attackers to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2314
|
2024-11-21 10:51 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294177
|
- |
|
lockon
|
ec-cube
|
Session fixation vulnerability in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2013-2313
|
2024-11-21 10:51 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294178
|
- |
|
lockon
|
ec-cube
|
Cross-site scripting (XSS) vulnerability in the shopping-cart screen in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2013-2312
|
2024-11-21 10:51 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294179
|
- |
|
moodle
|
moodle
|
The MoodleQuickForm class in lib/formslib.php in Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not properly handle a certain array-element syntax, which …
|
CWE-20
Improper Input Validation
|
CVE-2013-2083
|
2024-11-21 10:51 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294180
|
- |
|
moodle
|
moodle
|
Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not enforce capability requirements for reading blog comments, which allows remote attackers to obtain sens…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2082
|
2024-11-21 10:51 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
