|
290501
|
- |
|
pineapp
|
mail-secure_5099sk
|
admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms allows remote attackers to execute arbitrary commands via shell metacharacters in the nsserver parame…
|
CWE-94
Code Injection
|
CVE-2013-6830
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290502
|
- |
|
pineapp
|
mail-secure
|
admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation.
|
CWE-94
Code Injection
|
CVE-2013-6829
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290503
|
- |
|
pineapp
|
mail-secure
|
admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication and perform a sys_usermng operation via the it parameter.
|
CWE-287
Improper Authentication
|
CVE-2013-6828
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290504
|
- |
|
pineapp
|
mail-secure
|
Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows remote attackers to read arbitrary files via a full pathname in the msg parameter.
|
CWE-22
Path Traversal
|
CVE-2013-6827
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290505
|
- |
|
fortinet
|
fortianalyzer_firmware
fortianalyzer-1000d
fortianalyzer-2000b
fortianalyzer-200d
fortianalyzer-3000d
fortianalyzer-300d
fortianalyzer-4000b
|
cgi-bin/module//sysmanager/admin/SYSAdminUserDialog in Fortinet FortiAnalyzer before 5.0.5 does not properly validate the csrf_token parameter, which allows remote attackers to perform cross-site req…
|
CWE-352
Origin Validation Error
|
CVE-2013-6826
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290506
|
- |
|
sap
|
netweaver
|
GRMGApp in SAP NetWeaver allows remote attackers to bypass intended access restrictions via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6823
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290507
|
- |
|
sap
|
netweaver
|
GRMGApp in SAP NetWeaver allows remote attackers to have unspecified impact and attack vectors, related to an XML External Entity (XXE) issue.
|
NVD-CWE-noinfo
|
CVE-2013-6822
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290508
|
- |
|
sap
|
netweaver
|
Directory traversal vulnerability in the Exportability Check Service in SAP NetWeaver allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2013-6821
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290509
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in Performance Provider in SAP NetWeaver allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6819
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290510
|
- |
|
sap
|
netweaver_development_infrastructure
|
Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure (NWDI) allows remote attackers to execute arbitrary code by uploading a file with an executable extension via un…
|
NVD-CWE-Other
|
CVE-2013-6820
|
2024-11-21 10:59 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
