CVE-2013-5054
|
Microsoft Office 2013 and 2013 RT allows remote attackers to discover authentication tokens via a crafted response to a file-open request for an... |
Microsoft |
Office |
2013-12-11 00:00:00 UTC |
CVE |
CVE-2013-3918
|
The InformationCardSigninHelper Class ActiveX control in icardie.dll in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista... |
Microsoft |
Windows |
2013-11-12 01:00:00 UTC |
CVE |
CVE-2011-4106
|
TimThumb (timthumb.php) before 2.0 does not validate the entire source with the domain white list, which allows remote attackers to upload and... |
n/a |
TimThumb |
2013-10-26 16:00:00 UTC |
CVE |
CVE-2013-6129
|
The install/upgrade.php scripts in vBulletin 4.1 and 5 allow remote attackers to create administrative accounts via the customerid,... |
vBulletin |
vBulletin |
2013-10-19 10:00:00 UTC |
CVE |
CVE-2013-6026
|
The web interface on D-Link DIR-100, DIR-120, DI-624S, DI-524UP, DI-604S, DI-604UP, DI-604+, and TM-G5240 routers; Planex BRL-04R, BRL-04UR, and... |
D-Link, Planex, Alpha Networks |
DIR-100, DIR-120, DI-624S, DI-524UP, DI-604S, DI-604UP, DI-604+, TM-G5240, BRL-04R, BRL-04UR, BRL-04CW |
2013-10-19 10:00:00 UTC |
CVE |
CVE-2013-5576
|
administrator/components/com_media/helpers/media.php in the media manager in Joomla! 2.5.x before 2.5.14 and 3.x before 3.1.5 allows remote... |
Joomla! |
Joomla! |
2013-10-09 14:44:00 UTC |
CVE |
CVE-2013-4854
|
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND... |
ISC |
BIND |
2013-07-26 23:00:00 UTC |
CVE |
CVE-2013-1493
|
The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40... |
Oracle |
Java SE |
2013-03-04 16:00:00 UTC |
CVE |
CVE-2013-0633
|
Buffer overflow in Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before... |
Adobe |
Flash Player |
2013-02-08 11:00:00 UTC |
CVE |
CVE-2013-0634
|
Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before 11.2.202.262 on... |
Adobe |
Flash Player |
2013-02-08 11:00:00 UTC |
CVE |
CVE-2012-6498
|
Unrestricted file upload vulnerability in index.php in Atomymaxsite 2.5 and earlier allows remote attackers to execute arbitrary code by uploading... |
Atomymaxsite |
Atomymaxsite |
2013-01-08 15:00:00 UTC |
CVE |
CVE-2012-6081
|
Multiple unrestricted file upload vulnerabilities in the (1) twikidraw (action/twikidraw.py) and (2) anywikidraw (action/anywikidraw.py) actions in... |
MoinMoin |
MoinMoin |
2013-01-03 01:00:00 UTC |
CVE |
CVE-2012-6467
|
Opera before 12.10 follows Internet shortcuts that are referenced by a (1) IMG element or (2) other inline element, which makes it easier for... |
Opera |
Opera Browser |
2013-01-02 11:00:00 UTC |
CVE |
CVE-2011-5148
|
Multiple incomplete blacklist vulnerabilities in the Simple File Upload (mod_simplefileuploadv1.3) module before 1.3.5 for Joomla! allow remote... |
Joomla! |
Simple File Upload |
2012-08-31 21:00:00 UTC |
CVE |
CVE-2012-1854
|
Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for... |
Microsoft |
Office |
2012-07-10 21:00:00 UTC |
CVE |
CVE-2012-2376
|
Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via... |
PHP |
PHP |
2012-05-21 15:00:00 UTC |
CVE |
CVE-2012-0779
|
Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and... |
Adobe |
Flash Player |
2012-05-04 19:00:00 UTC |
CVE |
CVE-2012-1795
|
webglimpse.cgi in Webglimpse before 2.20.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter,... |
Webglimpse |
Webglimpse |
2012-03-20 18:00:00 UTC |
CVE |
CVE-2012-1557
|
SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU#2, 9.x before 9.5 MU#11, 10.0.x... |
Parallels |
Plesk Panel |
2012-03-12 19:00:00 UTC |
CVE |
CVE-2012-1071
|
SQL injection vulnerability in the Kitchen recipe (mv_cooking) extension before 0.4.1 for TYPO3 allows remote attackers to execute arbitrary SQL... |
TYPO3 |
Kitchen recipe (mv_cooking) extension |
2012-02-14 17:00:00 UTC |
CVE |
CVE-2011-4862
|
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and... |
FreeBSD |
FreeBSD |
2011-12-25 01:00:00 UTC |
CVE |
CVE-2011-4369
|
Unspecified vulnerability in the PRC component in Adobe Reader and Acrobat 9.x before 9.4.7 on Windows, Adobe Reader and Acrobat 9.x through 9.4.6... |
Adobe |
Reader and Acrobat |
2011-12-16 19:00:00 UTC |
CVE |
CVE-2011-3402
|
Unspecified vulnerability in the TrueType font parsing engine in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows... |
Microsoft |
Windows |
2011-11-04 21:00:00 UTC |
CVE |
CVE-2011-4075
|
The masort function in lib/functions.php in phpLDAPadmin 1.2.x before 1.2.2 allows remote attackers to execute arbitrary PHP code via the orderby... |
phpLDAPadmin |
phpLDAPadmin |
2011-11-02 17:00:00 UTC |
CVE |
CVE-2011-2444
|
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7... |
Adobe |
Flash Player |
2011-09-22 01:00:00 UTC |
CVE |