|
290401
|
- |
|
ibm
|
flashcopy_manager
tivoli_storage_manager_for_mail
data_protection
tivoli_storage_flashcopy_manager
|
The (1) Data Protection for Exchange component 6.1 before 6.1.3.4 and 6.3 before 6.3.1 in IBM Tivoli Storage Manager for Mail and the (2) FlashCopy Manager for Exchange component 2.2 and 3.1 before 3…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3976
|
2024-11-21 10:54 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290402
|
- |
|
xnview
|
xnview
|
Integer overflow in xnview.exe in XnView 2.13 allows remote attackers to execute arbitrary code via a large NUM_ELEMENTS field in an IFD_ENTRY structure in a JXR file, which triggers a heap-based buf…
|
CWE-189
Numeric Errors
|
CVE-2013-3938
|
2024-11-21 10:54 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290403
|
- |
|
ibm
|
infosphere_information_server
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote attackers to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4059
|
2024-11-21 10:54 |
2014-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290404
|
- |
|
ibm
|
infosphere_information_server
|
Multiple SQL injection vulnerabilities in IBM InfoSphere Information Server 8.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allow remote authenticated users to execute arbitrary…
|
CWE-89
SQL Injection
|
CVE-2013-4058
|
2024-11-21 10:54 |
2014-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290405
|
- |
|
ibm
|
infosphere_information_server
|
Cross-site request forgery (CSRF) vulnerability in the XML Pack in IBM InfoSphere Information Server 8.5.x through 8.5 FP3, 8.7.x through 8.7 FP2, and 9.1.x through 9.1.2.0 allows remote attackers to…
|
CWE-352
Origin Validation Error
|
CVE-2013-4057
|
2024-11-21 10:54 |
2014-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290406
|
- |
|
kasseler-cms
|
kasseler-cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Kasseler CMS before 2 r1232 allow remote attackers to hijack the authentication of administrators for requests that conduct SQL injection…
|
CWE-352
Origin Validation Error
|
CVE-2013-3729
|
2024-11-21 10:54 |
2014-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290407
|
- |
|
kasseler-cms
|
kasseler-cms
|
Cross-site scripting (XSS) vulnerability in Kasseler CMS before 2 r1232 allows remote authenticated users with permissions to create categories to inject arbitrary web script or HTML via the cat para…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3728
|
2024-11-21 10:54 |
2014-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290408
|
- |
|
kasseler-cms
|
kasseler-cms
|
SQL injection vulnerability in Kasseler CMS before 2 r1232 allows remote authenticated users to execute arbitrary SQL commands via the groups[] parameter to admin.php. NOTE: this can be leveraged us…
|
CWE-89
SQL Injection
|
CVE-2013-3727
|
2024-11-21 10:54 |
2014-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290409
|
- |
|
abeel
|
simple_php_agenda
|
SQL injection vulnerability in edit_event.php in Simple PHP Agenda before 2.2.9 allows remote authenticated users to execute arbitrary SQL commands via the eventid parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3961
|
2024-11-21 10:54 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290410
|
- |
|
jpchacha
|
chasys_draw_ies
|
Stack-based buffer overflow in the ReadFile function in flt_BMP.dll in Chasys Draw IES before 4.11.02 allows remote attackers to execute arbitrary code via crafted biPlanes and biBitCount fields in a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3928
|
2024-11-21 10:54 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
