|
290581
|
- |
|
emc
|
document_sciences_xpression
|
Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Ed…
|
CWE-20
Improper Input Validation
|
CVE-2013-6174
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290582
|
- |
|
emc
|
document_sciences_xpression
|
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Ent…
|
CWE-352
Origin Validation Error
|
CVE-2013-6173
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290583
|
- |
|
lockon
|
ec-cube
|
Multiple cross-site scripting (XSS) vulnerabilities in shopping/payment.tpl components in LOCKON EC-CUBE 2.11.0 through 2.13.0 allow remote attackers to inject arbitrary web script or HTML via crafte…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5996
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290584
|
- |
|
lockon
|
ec-cube
|
data/class/helper/SC_Helper_Address.php in the front-features implementation in LOCKON EC-CUBE 2.12.3 through 2.13.0 allows remote authenticated users to obtain sensitive information via unspecified …
|
CWE-200
Information Exposure
|
CVE-2013-5995
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290585
|
- |
|
lockon
|
ec-cube
|
data/class/pages/mypage/LC_Page_Mypage_DeliveryAddr.php in LOCKON EC-CUBE 2.11.2 through 2.13.0 allows remote attackers to obtain sensitive information via a direct request, which reveals the full pa…
|
CWE-200
Information Exposure
|
CVE-2013-5994
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290586
|
- |
|
lockon
|
ec-cube
|
Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE 2.11.0 through 2.13.0 allows remote attackers to hijack the authentication of arbitrary users via unspecified vectors related to refu…
|
CWE-352
Origin Validation Error
|
CVE-2013-5993
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290587
|
- |
|
lockon
|
ec-cube
|
Cross-site scripting (XSS) vulnerability in the displaySystemError function in html/handle_error.php in LOCKON EC-CUBE 2.11.0 through 2.11.5 allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2013-5992
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290588
|
- |
|
lockon
|
ec-cube
|
The displaySystemError function in html/handle_error.php in LOCKON EC-CUBE 2.11.0 through 2.11.5 allows remote attackers to obtain sensitive information by leveraging incorrect handling of error-log …
|
CWE-200
Information Exposure
|
CVE-2013-5991
|
2024-11-21 10:58 |
2013-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290589
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.2.x before 7.2.2-rev25 and 7.4.x before 7.4.0-rev14 allows remote attackers to inject arbitrary web script or HTML via an atta…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6074
|
2024-11-21 10:58 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290590
|
- |
|
zkoss
|
zk_framework
|
Cross-site scripting (XSS) vulnerability in ZK Framework before 5.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5966
|
2024-11-21 10:58 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
