Export limit exceeded: 343831 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 343831 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (343831 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2013-4158 | 3 Debian, Fedoraproject, Smokeping | 3 Debian Linux, Fedora, Smokeping | 2024-11-21 | 6.1 Medium |
| smokeping before 2.6.9 has XSS (incomplete fix for CVE-2012-0790) | ||||
| CVE-2013-4144 | 1 Swfupload Project | 1 Swfupload | 2024-11-21 | 9.8 Critical |
| There is an object injection vulnerability in swfupload plugin for wordpress. | ||||
| CVE-2013-4133 | 2 Debian, Kde | 2 Debian Linux, Kde-workspace | 2024-11-21 | 7.5 High |
| kde-workspace before 4.10.5 has a memory leak in plasma desktop | ||||
| CVE-2013-4120 | 1 Theforeman | 1 Katello | 2024-11-21 | 7.5 High |
| Katello has a Denial of Service vulnerability in API OAuth authentication | ||||
| CVE-2013-4110 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 5.3 Medium |
| Cryptocat has an Unspecified Chat Participant User List Disclosure | ||||
| CVE-2013-4109 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 6.1 Medium |
| An unspecified cross-site scripting (XSS) vulnerability exists in Cryptocat Message Handling 1.1.165. | ||||
| CVE-2013-4108 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 9.8 Critical |
| Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors. | ||||
| CVE-2013-4107 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 6.1 Medium |
| Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting | ||||
| CVE-2013-4106 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 6.1 Medium |
| A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22. | ||||
| CVE-2013-4105 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 7.5 High |
| Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure | ||||
| CVE-2013-4104 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 7.5 High |
| Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol | ||||
| CVE-2013-4103 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 9.8 Critical |
| Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input | ||||
| CVE-2013-4102 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 9.1 Critical |
| Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness | ||||
| CVE-2013-4101 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 5.3 Medium |
| Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness | ||||
| CVE-2013-4100 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 7.5 High |
| Cryptocat before 2.0.22 has Remote Denial of Service via username | ||||
| CVE-2013-4090 | 1 Varnish Cache Project | 1 Varnish Cache | 2024-11-21 | 7.5 High |
| Varnish HTTP cache before 3.0.4: ACL bug | ||||
| CVE-2013-4088 | 1 Otrs | 1 Otrs | 2024-11-21 | 6.5 Medium |
| Kernel/Modules/AgentTicketWatcher.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.21, 3.1.x before 3.1.17, and 3.2.x before 3.2.8 does not properly restrict tickets, which allows remote attackers with a valid agent login to read restricted tickets via a crafted URL involving the ticket split mechanism. | ||||
| CVE-2013-4040 | 1 Ibm | 1 Tivoli Application Dependency Discovery Manager | 2024-11-21 | N/A |
| IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2.x before 7.2.1.5 and 7.2.x before 7.2.2.0 on Unix use weak permissions (755) for unspecified configuration and log files, which allows local users to obtain sensitive information by reading the files. IBM X-Force ID: 86176. | ||||
| CVE-2013-4035 | 1 Ibm | 1 Sterling Connect | 2024-11-21 | N/A |
| IBM Sterling Connect:Direct for OpenVMS 3.4.00, 3.4.01, 3.5.00, 3.6.0, and 3.6.0.1 allow remote attackers to have unspecified impact by leveraging failure to reject client requests for an unencrypted session when used as the server in a TCP/IP session and configured for SSL encryption with the client. IBM X-Force ID: 86138. | ||||
| CVE-2013-3960 | 1 Easytimestudio | 1 Easy File Manager | 2024-11-21 | 9.9 Critical |
| Easytime Studio Easy File Manager 1.1 has a HTTP request security bypass | ||||