|
290811
|
- |
|
ibm
|
z\/os
i
|
The OSPF implementation in IBM i 6.1 and 7.1, in z/OS on zSeries servers, and in Networking Operating System (aka NOS, formerly BLADE Operating System) does not properly validate Link State Advertise…
|
CWE-20
Improper Input Validation
|
CVE-2013-5385
|
2024-11-21 10:57 |
2014-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290812
|
- |
|
opensuse
ntp
oracle
|
opensuse
ntp
linux
|
The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_…
|
CWE-20
Improper Input Validation
|
CVE-2013-5211
|
2024-11-21 10:57 |
2014-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290813
|
- |
|
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in the default markup formatter in Jenkins 1.523 allows remote attackers to inject arbitrary web script or HTML via the Description field in the user configur…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5573
|
2024-11-21 10:57 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290814
|
- |
|
esri
|
arcgis_server
|
Multiple cross-site scripting (XSS) vulnerabilities in ESRI ArcGIS for Server 10.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5222
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290815
|
- |
|
hot
|
hotbox_router_firmware
hotbox_router
|
goform/login on the HOT HOTBOX router with software 2.1.11 allows remote attackers to cause a denial of service (device crash) via crafted HTTP POST data.
|
CWE-20
Improper Input Validation
|
CVE-2013-5220
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290816
|
- |
|
hot
|
hotbox_router_firmware
hotbox_router
|
Directory traversal vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to read arbitrary files via a .. (dot dot) in a URI, as demonstrated by a request for /etc/pass…
|
CWE-22
Path Traversal
|
CVE-2013-5219
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290817
|
- |
|
hot
|
hotbox_router_firmware
hotbox_router
|
Cross-site scripting (XSS) vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to inject arbitrary web script or HTML via a crafted DHCP Host Name option, which is not…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5218
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290818
|
- |
|
adtran
|
aos
netvanta_7060
netvanta_7100
|
Cross-site scripting (XSS) vulnerability in the GUI login page in ADTRAN AOS before R10.8.1 on the NetVanta 7100 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5210
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290819
|
- |
|
joomla
|
joomla\!
|
Cross-site scripting (XSS) vulnerability in libraries/idna_convert/example.php in Joomla! 3.1.5 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5583
|
2024-11-21 10:57 |
2013-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290820
|
- |
|
ibm
|
security_access_manager_for_enterprise_single_sign-on
|
The IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to read log files by leveraging helpdesk privileges for a d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5420
|
2024-11-21 10:57 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
