|
290521
|
- |
|
apache
|
maven
|
The default configuration of Apache Maven 3.0.4, when using Maven Wagon 2.1, disables SSL certificate checks, which allows remote attackers to spoof servers via a man-in-the-middle (MITM) attack.
|
CWE-16
Configuration
|
CVE-2013-0253
|
2024-11-21 10:47 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290522
|
- |
|
cogentdatahub
|
cogent_datahub
opc_datahub
cascade_datahub
datahub_quicktrend
|
Stack-based buffer overflow in the web server in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend befo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0680
|
2024-11-21 10:47 |
2013-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290523
|
- |
|
ibm
|
ims_enterprise_suite
|
The login component in SOAP Gateway in IBM IMS Enterprise Suite 1.1, 2.1, and 2.2 uses cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
|
CWE-310
Cryptographic Issues
|
CVE-2013-0483
|
2024-11-21 10:47 |
2013-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290524
|
- |
|
ibm
|
netezza_performance_portal
|
HTTPD in IBM Netezza Performance Portal 1.0.2 allows remote authenticated users to list application directories containing asset files via a direct request to a directory URI, as demonstrated by list…
|
CWE-16
Configuration
|
CVE-2013-0470
|
2024-11-21 10:47 |
2013-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290525
|
- |
|
schneider-electric
|
modicon_quantum_plc
modicon_m340
modicon_premium
|
The FactoryCast service on the Schneider Electric Quantum 140NOE77111 and 140NWM10000, M340 BMXNOE0110x, and Premium TSXETY5103 PLC modules allows remote authenticated users to send Modbus messages, …
|
NVD-CWE-noinfo
|
CVE-2013-0664
|
2024-11-21 10:47 |
2013-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290526
|
- |
|
schneider-electric
|
modicon_quantum_plc
modicon_m340
modicon_premium
|
Cross-site request forgery (CSRF) vulnerability on the Schneider Electric Quantum 140NOE77111, 140NOE77101, and 140NWM10000; M340 BMXNOC0401, BMXNOE0100x, and BMXNOE011xx; and Premium TSXETY4103, TSX…
|
CWE-352
Origin Validation Error
|
CVE-2013-0663
|
2024-11-21 10:47 |
2013-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290527
|
- |
|
gnome
canonical
|
gnome_online_accounts
ubuntu_linux
|
Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which all…
|
CWE-310
Cryptographic Issues
|
CVE-2013-0240
|
2024-11-21 10:47 |
2013-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290528
|
- |
|
ibm
|
infosphere_information_server
|
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Information Server 8.1, 8.5 through FP3, 8.7 through FP2, and 9.1 allows remote attackers to inject arbitrary web script or HTML via a malfo…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0502
|
2024-11-21 10:47 |
2013-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290529
|
- |
|
siemens
|
cp_1604_firmware
cp_1616_firmware
cp_1616
cp_1604
|
The debugging feature on the Siemens CP 1604 and CP 1616 interface cards with firmware before 2.5.2 allows remote attackers to execute arbitrary code via a crafted packet to UDP port 17185.
|
NVD-CWE-noinfo
|
CVE-2013-0659
|
2024-11-21 10:47 |
2013-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290530
|
- |
|
ibm
|
security_appscan
rational_policy_tester
|
Cross-site request forgery (CSRF) vulnerability in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to hijack t…
|
CWE-352
Origin Validation Error
|
CVE-2013-0532
|
2024-11-21 10:47 |
2013-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
