|
292711
|
- |
|
sap
|
customer_relationship_management
|
The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM) 7.02 EHP 2 has unknown impact and attack vectors related to an XML External Entity (XXE) issue.
|
NVD-CWE-noinfo
|
CVE-2013-7095
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292712
|
- |
|
sap
|
netweaver
|
SQL injection vulnerability in the RSDDCVER_COUNT_TAB_COLS function in SAP NetWeaver 7.30 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-7094
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292713
|
- |
|
sap
|
network_interface_router
|
SAP Network Interface Router (SAProuter) 39.3 SP4 allows remote attackers to bypass authentication and modify the configuration via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2013-7093
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292714
|
- |
|
gnu
|
libmicrohttpd
|
Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7039
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292715
|
- |
|
gnu
|
libmicrohttpd
|
The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash) via unspecified vectors that trigger an…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7038
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292716
|
- |
|
mcafee
|
email_gateway
|
Multiple SQL injection vulnerabilities in /admin/cgi-bin/rpc/doReport/18 in McAfee Email Gateway 7.6 allow remote authenticated users to execute arbitrary SQL commands via the (1) events_col, (2) eve…
|
CWE-89
SQL Injection
|
CVE-2013-7092
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292717
|
- |
|
synacor
|
zimbra_collaboration_suite
|
Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2 allows remote attackers to read arbitrary files via a .. (…
|
CWE-22
Path Traversal
|
CVE-2013-7091
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292718
|
- |
|
devscripts_devel_team
|
devscripts
|
The get_main_source_dir function in scripts/uscan.pl in devscripts before 2.13.8, when using USCAN_EXCLUSION, allows remote attackers to execute arbitrary commands via shell metacharacters in a direc…
|
CWE-94
Code Injection
|
CVE-2013-7050
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292719
|
- |
|
juniper
|
screenos
netscreen-5200
netscreen-5400
|
Juniper NetScreen Firewall running ScreenOS 5.4, 6.2, or 6.3, when the Ping of Death screen is disabled, allows remote attackers to cause a denial of service via a crafted packet.
|
NVD-CWE-noinfo
|
CVE-2013-6958
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292720
|
- |
|
juniper
|
idp250
idp8200
idp800
idp75
|
Cross-site scripting (XSS) vulnerability in the web administrative component in Juniper IDP allows remote attackers to inject arbitrary web script or HTML via unspecified vectors to the ACM web serve…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6957
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
