CVE Database Year: 2013
CVE-2013-0001: System Drawing Information Disclosure Vulnerability
CVE-2013-0002: WinForms Buffer Overflow Vulnerability
CVE-2013-0003: S.DS.P Buffer Overflow Vulnerability
CVE-2013-0004: Double Construction Vulnerability in Microsoft .NET Framework
CVE-2013-0005: Replace Denial of Service Vulnerability
CVE-2013-0006: MSXML Integer Truncation Vulnerability
CVE-2013-0007: MSXML XSLT Vulnerability
CVE-2013-0008: Win32k Improper Message Handling Vulnerability
CVE-2013-0009: System Center Operations Manager Web Console XSS Vulnerability
CVE-2013-0010: System Center Operations Manager Web Console XSS Vulnerability
CVE-2013-0011: Windows Print Spooler Remote Code Execution Vulnerability
CVE-2013-0013: Microsoft SSL Version 3 and TLS Protocol Security Feature Bypass Vulnerability
CVE-2013-0015: Shift JIS Character Encoding Vulnerability in Microsoft Internet Explorer 6-9
CVE-2013-0018: Internet Explorer SetCapture Use After Free Vulnerability
CVE-2013-0019: Internet Explorer COmWindowProxy Use After Free Vulnerability
CVE-2013-0020: Internet Explorer 9 Use-After-Free Vulnerability
CVE-2013-0021: Internet Explorer vtable Use After Free Vulnerability
CVE-2013-0022: Internet Explorer LsGetTrailInfo Use After Free Vulnerability
CVE-2013-0023: Internet Explorer CDispNode Use After Free Vulnerability
CVE-2013-0024: Internet Explorer pasteHTML Use After Free Vulnerability
CVE-2013-0025: Internet Explorer SLayoutRun Use After Free Vulnerability
CVE-2013-0026: Internet Explorer InsertElement Use After Free Vulnerability
CVE-2013-0027: Internet Explorer CPasteCommand Use After Free Vulnerability
CVE-2013-0028: Internet Explorer CObjectElement Use After Free Vulnerability
CVE-2013-0029: Internet Explorer CHTML Use After Free Vulnerability
CVE-2013-0030: VML Memory Corruption Vulnerability
CVE-2013-0073: WinForms Callback Elevation Vulnerability
CVE-2013-0074: Silverlight Double Dereference Vulnerability
CVE-2013-0075: TCP FIN WAIT Vulnerability
CVE-2013-0076: Reference Count Vulnerability in Microsoft Windows Server 2008 R2 and Windows 7
CVE-2013-0077: Media Decompression Vulnerability in Quartz.dll
CVE-2013-0078: Microsoft Antimalware Client Privilege Escalation Vulnerability
CVE-2013-0079: Visio Viewer Tree Object Type Confusion Vulnerability
CVE-2013-0080: Callback Function Vulnerability in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1
CVE-2013-0081: SharePoint Denial of Service Vulnerability
CVE-2013-0082: WPD File Format Memory Corruption Vulnerability in Microsoft Office 2003 and 2007 SP3
CVE-2013-0083: SharePoint Server 2010 SP1 Cross-Site Scripting (XSS) Vulnerability
CVE-2013-0084: SharePoint Directory Traversal Vulnerability
CVE-2013-0085: Remote Denial of Service in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 via Crafted URL
CVE-2013-0086: Buffer Size Validation Vulnerability in Microsoft OneNote 2010 SP1
CVE-2013-0087: Internet Explorer OnResize Use After Free Vulnerability
CVE-2013-0088: Internet Explorer saveHistory Use After Free Vulnerability
CVE-2013-0089: Internet Explorer CMarkupBehaviorContext Use After Free Vulnerability
CVE-2013-0090: Internet Explorer CCaret Use After Free Vulnerability
CVE-2013-0091: Internet Explorer CElement Use After Free Vulnerability
CVE-2013-0092: Internet Explorer GetMarkupPtr Use After Free Vulnerability
CVE-2013-0093: Internet Explorer Use-After-Free Vulnerability
CVE-2013-0094: Internet Explorer removeChild Use After Free Vulnerability
CVE-2013-0095: Unintended Content Loading Vulnerability in Microsoft Office for Mac 2008 and 2011
CVE-2013-0096: Windows Essentials Writer Remote File Overwrite Vulnerability
CVE-2013-0107: Remote Code Execution Vulnerability in Foxit Advanced PDF Editor 3 before 3.04
CVE-2013-0108: Arbitrary Code Execution Vulnerability in Honeywell Enterprise Buildings Integrator (EBI) and SymmetrE
CVE-2013-0109: Privilege Escalation and Denial of Service Vulnerability in NVIDIA Display Driver Service
CVE-2013-0110: Privilege Escalation Vulnerability in NVIDIA Stereoscopic 3D Driver Service
CVE-2013-0111: Privilege Escalation Vulnerability in NVIDIA Update Service Daemon
CVE-2013-0113: Remote Code Execution and Memory Corruption Vulnerability in Nuance PDF Reader and PDF Viewer Plus
CVE-2013-0118: CS-Cart PayPal Standard Payments Remote Payment Recipient Manipulation Vulnerability
CVE-2013-0120: Denial of Service Vulnerability in Dell PowerConnect 6248P Switches
CVE-2013-0122: Denial of Service Vulnerability in avast! Mobile Security Application
CVE-2013-0123: Multiple SQL Injection Vulnerabilities in ASKIA askiaweb Administration Interface
CVE-2013-0124: Multiple Cross-Site Scripting (XSS) Vulnerabilities in ASKIA askiaweb Administration Interface
CVE-2013-0125: Arbitrary Web Script Injection Vulnerability in C2 WebResource's fileview.asp
CVE-2013-0126: CSRF Vulnerabilities in Verizon FIOS Actiontec MI424WR-GEN3I Router Firmware 40.19.36
CVE-2013-0127: Vulnerability: Unrestricted Java Code Execution and X-Confirm-Reading-To Bypass in IBM Lotus Notes
CVE-2013-0128: Unencrypted Credentials Leak in TigerText Free Private Texting App
CVE-2013-0129: Cross-Site Scripting (XSS) Vulnerabilities in pd-admin before 4.17
CVE-2013-0130: Buffer Overflow Vulnerabilities in Core FTP: Remote Code Execution and Denial of Service
CVE-2013-0131: Buffer Overflow Vulnerability in NVIDIA GPU Driver
CVE-2013-0132: Arbitrary PHP Code Execution Vulnerability in Parallels Plesk Panel 11.0.9
CVE-2013-0133: Untrusted Search Path Vulnerability in Parallels Plesk Panel 11.0.9
CVE-2013-0134: AirDroid Web Interface Cross-Site Scripting (XSS) Vulnerability
CVE-2013-0135: Multiple SQL Injection Vulnerabilities in PHP Address Book 8.2.5
CVE-2013-0136: Multiple Directory Traversal Vulnerabilities in Mutiny Frontend's EditDocument Servlet
CVE-2013-0137: Default SSH Private Key Vulnerability in Digital Alert Systems DASDEC and Monroe Electronics R189 One-Net EAS Devices
CVE-2013-0138: Remote Code Execution and Denial of Service Vulnerability in BitZipper 2013 (pre-Update 1)
CVE-2013-0139: Denial of Service Vulnerability in Arecont Vision AV1355DN MegaDome Camera
CVE-2013-0140: SQL Injection Vulnerability in McAfee ePolicy Orchestrator (ePO) Agent-Handler Component
CVE-2013-0141: Arbitrary File Upload Vulnerability in McAfee ePolicy Orchestrator (ePO)
CVE-2013-0142: Hardcoded Guest Account Vulnerability in QNAP VioStor NVR Devices
CVE-2013-0143: Arbitrary Command Execution Vulnerability in QNAP VioStor NVR Devices and Surveillance Station Pro
CVE-2013-0144: CSRF Vulnerability in QNAP VioStor NVR Devices Allows Unauthorized Creation of Administrative Accounts
CVE-2013-0145: Buffer Overflow Vulnerability in Serva32 2.1.0 TFTPD Service
CVE-2013-0148: Insecure Data Access in FairCom c-treeACE: Exploiting the Data Camouflage Vulnerability
CVE-2013-0149: Vulnerability: OSPF LSA Type 1 Packet Validation Bypass
CVE-2013-0150: Arbitrary File Upload and Execution Vulnerability in F5 BIG-IP APM and FirePass
CVE-2013-0151: Denial of Service Vulnerability in Xen 4.2.x on x86_32 Platform with Nested Virtualization Support
CVE-2013-0152: Denial of Service Vulnerability in Xen 4.2 and Unstable due to Improper Handling of Nested Virtualization
CVE-2013-0153: AMD IOMMU Vulnerability: Interrupt Injection Denial of Service in Xen
CVE-2013-0154: Denial of Service Vulnerability in Xen 4.2 with Debugging Enabled
CVE-2013-0155: Vulnerability in Ruby on Rails allows bypassing database-query restrictions
CVE-2013-0156: Object-injection vulnerability in active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11
CVE-2013-0157: Directory Existence Disclosure Vulnerability in mount and umount
CVE-2013-0158: Unspecified vulnerability in Jenkins allows remote attackers to obtain master cryptographic key
CVE-2013-0159: Symlink Attack Vulnerability in Fedora Business Cards Package
CVE-2013-0160: Timing Information Disclosure Vulnerability in Linux Kernel
CVE-2013-0161: Havalite CMS 1.1.7 Stored XSS Vulnerability
CVE-2013-0162: Symlink Attack Vulnerability in Ruby Parser Gem
CVE-2013-0163: Predictable /tmp Directory in OpenShift HAProxy Cartridge: Potential DoS Vulnerability
CVE-2013-0164: Arbitrary File Overwrite Vulnerability in Red Hat OpenShift Origin
CVE-2013-0165: Improper File Creation Vulnerability in OpenShift MongoDB Cartridge
CVE-2013-0166: Vulnerability: Improper Signature Verification in OpenSSL OCSP Responses
CVE-2013-0167: Vulnerability: Host Unavailability in Red Hat Enterprise Virtualization 3 and 3.2
CVE-2013-0168: Improper Permission Check in MoveDisk Command in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and Earlier
CVE-2013-0169: Lucky Thirteen: Timing Side-Channel Attacks on TLS and DTLS Protocols
CVE-2013-0170: Use-after-free vulnerability in virNetMessageFree function in libvirt
CVE-2013-0171: Arbitrary Code Execution Vulnerability in Foreman before 1.1 via Crafted YAML Object
CVE-2013-0172: Samba 4.0.x LDAP ObjectClass Access Control Bypass Vulnerability
CVE-2013-0173: Weak Root Password Hashing in Foreman 1.1
CVE-2013-0174: Foreman External Node Classifier (ENC) API Password Hash Disclosure Vulnerability
CVE-2013-0175: Object Injection and Denial of Service Vulnerability in multi_xml Gem
CVE-2013-0176: Denial of Service Vulnerability in libssh's publickey_from_privatekey Function
CVE-2013-0177: Cross-Site Scripting (XSS) Vulnerabilities in Apache OFBiz Widget/Screen/ModelScreenWidget.java
CVE-2013-0178: Insecure Temporary File Vulnerability in Redis
CVE-2013-0179: Buffer Over-read Vulnerability in memcached 1.4.4 and earlier versions
CVE-2013-0180: Redis 2.6 Insecure Temporary File Vulnerability: Exploiting /tmp/redis.ds
CVE-2013-0181: Arbitrary Script Injection in Search API Views
CVE-2013-0182: Arbitrary Payment Access Vulnerability in Drupal Payment Module
CVE-2013-0183: Denial of Service Vulnerability in Rack's Multipart Parser
CVE-2013-0184: Denial of Service Vulnerability in Rack::Auth::AbstractRequest
CVE-2013-0185: CSRF Vulnerability in ManageIQ Enterprise Virtualization Manager (EVM)
CVE-2013-0186: ManageIQ EVM Multiple Cross-Site Scripting (XSS) Vulnerabilities
CVE-2013-0187: Privilege Escalation via XMLHttpRequest and AJAX Requests in Foreman before 1.1
CVE-2013-0189: Denial of Service Vulnerability in cachemgr.cgi in Squid 3.1.x and 3.2.x
CVE-2013-0190: Denial of Service Vulnerability in Xen for Linux Kernel 2.6.23 and Earlier Versions
CVE-2013-0002: WinForms Buffer Overflow Vulnerability
CVE-2013-0003: S.DS.P Buffer Overflow Vulnerability
CVE-2013-0004: Double Construction Vulnerability in Microsoft .NET Framework
CVE-2013-0005: Replace Denial of Service Vulnerability
CVE-2013-0006: MSXML Integer Truncation Vulnerability
CVE-2013-0007: MSXML XSLT Vulnerability
CVE-2013-0008: Win32k Improper Message Handling Vulnerability
CVE-2013-0009: System Center Operations Manager Web Console XSS Vulnerability
CVE-2013-0010: System Center Operations Manager Web Console XSS Vulnerability
CVE-2013-0011: Windows Print Spooler Remote Code Execution Vulnerability
CVE-2013-0013: Microsoft SSL Version 3 and TLS Protocol Security Feature Bypass Vulnerability
CVE-2013-0015: Shift JIS Character Encoding Vulnerability in Microsoft Internet Explorer 6-9
CVE-2013-0018: Internet Explorer SetCapture Use After Free Vulnerability
CVE-2013-0019: Internet Explorer COmWindowProxy Use After Free Vulnerability
CVE-2013-0020: Internet Explorer 9 Use-After-Free Vulnerability
CVE-2013-0021: Internet Explorer vtable Use After Free Vulnerability
CVE-2013-0022: Internet Explorer LsGetTrailInfo Use After Free Vulnerability
CVE-2013-0023: Internet Explorer CDispNode Use After Free Vulnerability
CVE-2013-0024: Internet Explorer pasteHTML Use After Free Vulnerability
CVE-2013-0025: Internet Explorer SLayoutRun Use After Free Vulnerability
CVE-2013-0026: Internet Explorer InsertElement Use After Free Vulnerability
CVE-2013-0027: Internet Explorer CPasteCommand Use After Free Vulnerability
CVE-2013-0028: Internet Explorer CObjectElement Use After Free Vulnerability
CVE-2013-0029: Internet Explorer CHTML Use After Free Vulnerability
CVE-2013-0030: VML Memory Corruption Vulnerability
CVE-2013-0073: WinForms Callback Elevation Vulnerability
CVE-2013-0074: Silverlight Double Dereference Vulnerability
CVE-2013-0075: TCP FIN WAIT Vulnerability
CVE-2013-0076: Reference Count Vulnerability in Microsoft Windows Server 2008 R2 and Windows 7
CVE-2013-0077: Media Decompression Vulnerability in Quartz.dll
CVE-2013-0078: Microsoft Antimalware Client Privilege Escalation Vulnerability
CVE-2013-0079: Visio Viewer Tree Object Type Confusion Vulnerability
CVE-2013-0080: Callback Function Vulnerability in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1
CVE-2013-0081: SharePoint Denial of Service Vulnerability
CVE-2013-0082: WPD File Format Memory Corruption Vulnerability in Microsoft Office 2003 and 2007 SP3
CVE-2013-0083: SharePoint Server 2010 SP1 Cross-Site Scripting (XSS) Vulnerability
CVE-2013-0084: SharePoint Directory Traversal Vulnerability
CVE-2013-0085: Remote Denial of Service in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 via Crafted URL
CVE-2013-0086: Buffer Size Validation Vulnerability in Microsoft OneNote 2010 SP1
CVE-2013-0087: Internet Explorer OnResize Use After Free Vulnerability
CVE-2013-0088: Internet Explorer saveHistory Use After Free Vulnerability
CVE-2013-0089: Internet Explorer CMarkupBehaviorContext Use After Free Vulnerability
CVE-2013-0090: Internet Explorer CCaret Use After Free Vulnerability
CVE-2013-0091: Internet Explorer CElement Use After Free Vulnerability
CVE-2013-0092: Internet Explorer GetMarkupPtr Use After Free Vulnerability
CVE-2013-0093: Internet Explorer Use-After-Free Vulnerability
CVE-2013-0094: Internet Explorer removeChild Use After Free Vulnerability
CVE-2013-0095: Unintended Content Loading Vulnerability in Microsoft Office for Mac 2008 and 2011
CVE-2013-0096: Windows Essentials Writer Remote File Overwrite Vulnerability
CVE-2013-0107: Remote Code Execution Vulnerability in Foxit Advanced PDF Editor 3 before 3.04
CVE-2013-0108: Arbitrary Code Execution Vulnerability in Honeywell Enterprise Buildings Integrator (EBI) and SymmetrE
CVE-2013-0109: Privilege Escalation and Denial of Service Vulnerability in NVIDIA Display Driver Service
CVE-2013-0110: Privilege Escalation Vulnerability in NVIDIA Stereoscopic 3D Driver Service
CVE-2013-0111: Privilege Escalation Vulnerability in NVIDIA Update Service Daemon
CVE-2013-0113: Remote Code Execution and Memory Corruption Vulnerability in Nuance PDF Reader and PDF Viewer Plus
CVE-2013-0118: CS-Cart PayPal Standard Payments Remote Payment Recipient Manipulation Vulnerability
CVE-2013-0120: Denial of Service Vulnerability in Dell PowerConnect 6248P Switches
CVE-2013-0122: Denial of Service Vulnerability in avast! Mobile Security Application
CVE-2013-0123: Multiple SQL Injection Vulnerabilities in ASKIA askiaweb Administration Interface
CVE-2013-0124: Multiple Cross-Site Scripting (XSS) Vulnerabilities in ASKIA askiaweb Administration Interface
CVE-2013-0125: Arbitrary Web Script Injection Vulnerability in C2 WebResource's fileview.asp
CVE-2013-0126: CSRF Vulnerabilities in Verizon FIOS Actiontec MI424WR-GEN3I Router Firmware 40.19.36
CVE-2013-0127: Vulnerability: Unrestricted Java Code Execution and X-Confirm-Reading-To Bypass in IBM Lotus Notes
CVE-2013-0128: Unencrypted Credentials Leak in TigerText Free Private Texting App
CVE-2013-0129: Cross-Site Scripting (XSS) Vulnerabilities in pd-admin before 4.17
CVE-2013-0130: Buffer Overflow Vulnerabilities in Core FTP: Remote Code Execution and Denial of Service
CVE-2013-0131: Buffer Overflow Vulnerability in NVIDIA GPU Driver
CVE-2013-0132: Arbitrary PHP Code Execution Vulnerability in Parallels Plesk Panel 11.0.9
CVE-2013-0133: Untrusted Search Path Vulnerability in Parallels Plesk Panel 11.0.9
CVE-2013-0134: AirDroid Web Interface Cross-Site Scripting (XSS) Vulnerability
CVE-2013-0135: Multiple SQL Injection Vulnerabilities in PHP Address Book 8.2.5
CVE-2013-0136: Multiple Directory Traversal Vulnerabilities in Mutiny Frontend's EditDocument Servlet
CVE-2013-0137: Default SSH Private Key Vulnerability in Digital Alert Systems DASDEC and Monroe Electronics R189 One-Net EAS Devices
CVE-2013-0138: Remote Code Execution and Denial of Service Vulnerability in BitZipper 2013 (pre-Update 1)
CVE-2013-0139: Denial of Service Vulnerability in Arecont Vision AV1355DN MegaDome Camera
CVE-2013-0140: SQL Injection Vulnerability in McAfee ePolicy Orchestrator (ePO) Agent-Handler Component
CVE-2013-0141: Arbitrary File Upload Vulnerability in McAfee ePolicy Orchestrator (ePO)
CVE-2013-0142: Hardcoded Guest Account Vulnerability in QNAP VioStor NVR Devices
CVE-2013-0143: Arbitrary Command Execution Vulnerability in QNAP VioStor NVR Devices and Surveillance Station Pro
CVE-2013-0144: CSRF Vulnerability in QNAP VioStor NVR Devices Allows Unauthorized Creation of Administrative Accounts
CVE-2013-0145: Buffer Overflow Vulnerability in Serva32 2.1.0 TFTPD Service
CVE-2013-0148: Insecure Data Access in FairCom c-treeACE: Exploiting the Data Camouflage Vulnerability
CVE-2013-0149: Vulnerability: OSPF LSA Type 1 Packet Validation Bypass
CVE-2013-0150: Arbitrary File Upload and Execution Vulnerability in F5 BIG-IP APM and FirePass
CVE-2013-0151: Denial of Service Vulnerability in Xen 4.2.x on x86_32 Platform with Nested Virtualization Support
CVE-2013-0152: Denial of Service Vulnerability in Xen 4.2 and Unstable due to Improper Handling of Nested Virtualization
CVE-2013-0153: AMD IOMMU Vulnerability: Interrupt Injection Denial of Service in Xen
CVE-2013-0154: Denial of Service Vulnerability in Xen 4.2 with Debugging Enabled
CVE-2013-0155: Vulnerability in Ruby on Rails allows bypassing database-query restrictions
CVE-2013-0156: Object-injection vulnerability in active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11
CVE-2013-0157: Directory Existence Disclosure Vulnerability in mount and umount
CVE-2013-0158: Unspecified vulnerability in Jenkins allows remote attackers to obtain master cryptographic key
CVE-2013-0159: Symlink Attack Vulnerability in Fedora Business Cards Package
CVE-2013-0160: Timing Information Disclosure Vulnerability in Linux Kernel
CVE-2013-0161: Havalite CMS 1.1.7 Stored XSS Vulnerability
CVE-2013-0162: Symlink Attack Vulnerability in Ruby Parser Gem
CVE-2013-0163: Predictable /tmp Directory in OpenShift HAProxy Cartridge: Potential DoS Vulnerability
CVE-2013-0164: Arbitrary File Overwrite Vulnerability in Red Hat OpenShift Origin
CVE-2013-0165: Improper File Creation Vulnerability in OpenShift MongoDB Cartridge
CVE-2013-0166: Vulnerability: Improper Signature Verification in OpenSSL OCSP Responses
CVE-2013-0167: Vulnerability: Host Unavailability in Red Hat Enterprise Virtualization 3 and 3.2
CVE-2013-0168: Improper Permission Check in MoveDisk Command in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and Earlier
CVE-2013-0169: Lucky Thirteen: Timing Side-Channel Attacks on TLS and DTLS Protocols
CVE-2013-0170: Use-after-free vulnerability in virNetMessageFree function in libvirt
CVE-2013-0171: Arbitrary Code Execution Vulnerability in Foreman before 1.1 via Crafted YAML Object
CVE-2013-0172: Samba 4.0.x LDAP ObjectClass Access Control Bypass Vulnerability
CVE-2013-0173: Weak Root Password Hashing in Foreman 1.1
CVE-2013-0174: Foreman External Node Classifier (ENC) API Password Hash Disclosure Vulnerability
CVE-2013-0175: Object Injection and Denial of Service Vulnerability in multi_xml Gem
CVE-2013-0176: Denial of Service Vulnerability in libssh's publickey_from_privatekey Function
CVE-2013-0177: Cross-Site Scripting (XSS) Vulnerabilities in Apache OFBiz Widget/Screen/ModelScreenWidget.java
CVE-2013-0178: Insecure Temporary File Vulnerability in Redis
CVE-2013-0179: Buffer Over-read Vulnerability in memcached 1.4.4 and earlier versions
CVE-2013-0180: Redis 2.6 Insecure Temporary File Vulnerability: Exploiting /tmp/redis.ds
CVE-2013-0181: Arbitrary Script Injection in Search API Views
CVE-2013-0182: Arbitrary Payment Access Vulnerability in Drupal Payment Module
CVE-2013-0183: Denial of Service Vulnerability in Rack's Multipart Parser
CVE-2013-0184: Denial of Service Vulnerability in Rack::Auth::AbstractRequest
CVE-2013-0185: CSRF Vulnerability in ManageIQ Enterprise Virtualization Manager (EVM)
CVE-2013-0186: ManageIQ EVM Multiple Cross-Site Scripting (XSS) Vulnerabilities
CVE-2013-0187: Privilege Escalation via XMLHttpRequest and AJAX Requests in Foreman before 1.1
CVE-2013-0189: Denial of Service Vulnerability in cachemgr.cgi in Squid 3.1.x and 3.2.x
CVE-2013-0190: Denial of Service Vulnerability in Xen for Linux Kernel 2.6.23 and Earlier Versions