|
295231
|
- |
|
eucalyptus
|
eucalyptus
|
The web services APIs in Eucalyptus 2.0 through 3.4.1 allow remote attackers to cause a denial of service via vectors related to the "network connection clean up code" and (1) Cloud Controller (CLC),…
|
CWE-20
Improper Input Validation
|
CVE-2013-4768
|
2024-11-21 10:56 |
2014-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295232
|
- |
|
reviewboard
|
review_board
|
Cross-site scripting (XSS) vulnerability in the Submitters list in Review Board 1.6.x before 1.6.18 and 1.7.x before 1.7.12 allows remote attackers to inject arbitrary web script or HTML via a user f…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4795
|
2024-11-21 10:56 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295233
|
- |
|
puppet
|
puppet_enterprise
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Puppet Enterprise (PE) before 3.0.1 allow remote attackers to hijack the authentication of users for requests that deleting a (1) report,…
|
CWE-352
Origin Validation Error
|
CVE-2013-4963
|
2024-11-21 10:56 |
2014-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295234
|
- |
|
hp
|
system_management_homepage
|
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.3 allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-4846
|
2024-11-21 10:56 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295235
|
- |
|
puppet
|
puppet_enterprise
|
Puppet Enterprise before 3.2.0 does not properly restrict access to node endpoints in the console, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4971
|
2024-11-21 10:56 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295236
|
- |
|
puppet
|
puppet_enterprise
|
The master external node classification script in Puppet Enterprise before 3.2.0 does not verify the identity of consoles, which allows remote attackers to create arbitrary classifications on the mas…
|
CWE-287
Improper Authentication
|
CVE-2013-4966
|
2024-11-21 10:56 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295237
|
- |
|
avtech
|
avn801_dvr_firmware
avn801_dvr
|
Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4981
|
2024-11-21 10:56 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295238
|
- |
|
avtech
|
avn801_dvr_firmware
avn801_dvr
|
Buffer overflow in the RTSP Packet Handler in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4980
|
2024-11-21 10:56 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295239
|
- |
|
hikvision
|
ds-2cd7153-e_firmware
ds-2cd7153-e
|
Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote attackers to cause a denial of service…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4977
|
2024-11-21 10:56 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295240
|
- |
|
google
|
android
|
Android 3.0 through 4.1.x on Disney Mobile, eAccess, KDDI, NTT DOCOMO, SoftBank, and other devices does not properly implement the WebView class, which allows remote attackers to execute arbitrary me…
|
CWE-20
Improper Input Validation
|
CVE-2013-4710
|
2024-11-21 10:56 |
2014-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
