|
291791
|
- |
|
ibm
|
lotus_domino
|
Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators.
|
CWE-352
Origin Validation Error
|
CVE-2013-0489
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291792
|
- |
|
ibm
|
lotus_domino
|
Cross-site scripting (XSS) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0488
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291793
|
- |
|
ibm
|
lotus_domino
|
The Java Console in IBM Domino 8.5.x allows remote authenticated users to hijack temporary credentials by leveraging knowledge of configuration details, aka SPR KLYH8TNNDN.
|
CWE-287
Improper Authentication
|
CVE-2013-0487
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291794
|
- |
|
ibm
|
lotus_domino
|
Memory leak in the HTTP server in IBM Domino 8.5.x allows remote attackers to cause a denial of service (memory consumption and daemon crash) via GET requests, aka SPR KLYH92NKZY.
|
CWE-399
Resource Management Errors
|
CVE-2013-0486
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291795
|
- |
|
ibm
|
lotus_inotes
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to inject arbitrary web script or HTML via a shared mail file, aka SPR DKEN8PDNTX.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0525
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291796
|
- |
|
canonical
samba
ibm
|
ubuntu_linux
samba
storwize
|
The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS sh…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0454
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291797
|
- |
|
openstack
canonical
|
essex
folsom
grizzly
ubuntu_linux
|
OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0335
|
2024-11-21 10:47 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291798
|
- |
|
ibm
|
tivoli_endpoint_manager
|
Cross-site scripting (XSS) vulnerability in Web Reports in IBM Tivoli Endpoint Manager (TEM) before 8.2.1372 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0453
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291799
|
- |
|
fedoraproject
|
sssd
|
The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which al…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0287
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291800
|
- |
|
siemens
|
simatic_pcs7
wincc
|
Directory traversal vulnerability in the web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote authenticated users to read arbitrary files v…
|
CWE-22
Path Traversal
|
CVE-2013-0679
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
