|
291751
|
- |
|
sun
|
sunos
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Utility.
|
NVD-CWE-noinfo
|
CVE-2013-0403
|
2024-11-21 10:47 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291752
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 allows remote attackers to read arbitrary files via a crafted external XML entity in an XML document, aka an XML Entit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0315
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291753
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 does not properly check authentication when importing Zip files, which allows remote attackers to modify site contents…
|
CWE-287
Improper Authentication
|
CVE-2013-0314
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291754
|
- |
|
openstack
|
keystone
|
OpenStack Keystone Grizzly before 2013.1, Folsom 2012.1.3 and earlier, and Essex does not properly check if the (1) user, (2) tenant, or (3) domain is enabled when using EC2-style authentication, whi…
|
CWE-287
Improper Authentication
|
CVE-2013-0282
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291755
|
- |
|
ibm
|
cognos_disclosure_management
|
The EdrawSoft EDOFFICE.EDOfficeCtrl.1 ActiveX control, as used in Edraw Office Viewer Component, the client in IBM Cognos Disclosure Management (CDM) 10.2.0, and other products, allows remote attacke…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0501
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291756
|
- |
|
nori_gem_project
|
nori_gem
|
The nori gem 2.0.x before 2.0.2, 1.1.x before 1.1.4, and 1.0.x before 1.0.3 for Ruby does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attac…
|
CWE-20
Improper Input Validation
|
CVE-2013-0285
|
2024-11-21 10:47 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291757
|
- |
|
newrelic
|
ruby_agent
|
Ruby agent 3.2.0 through 3.5.2 serializes sensitive data when communicating with servers operated by New Relic, which allows remote attackers to obtain sensitive information (database credentials and…
|
CWE-200
Information Exposure
|
CVE-2013-0284
|
2024-11-21 10:47 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291758
|
- |
|
apache
|
maven
|
The default configuration of Apache Maven 3.0.4, when using Maven Wagon 2.1, disables SSL certificate checks, which allows remote attackers to spoof servers via a man-in-the-middle (MITM) attack.
|
CWE-16
Configuration
|
CVE-2013-0253
|
2024-11-21 10:47 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291759
|
- |
|
cogentdatahub
|
cogent_datahub
opc_datahub
cascade_datahub
datahub_quicktrend
|
Stack-based buffer overflow in the web server in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend befo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0680
|
2024-11-21 10:47 |
2013-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291760
|
- |
|
ibm
|
ims_enterprise_suite
|
The login component in SOAP Gateway in IBM IMS Enterprise Suite 1.1, 2.1, and 2.2 uses cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
|
CWE-310
Cryptographic Issues
|
CVE-2013-0483
|
2024-11-21 10:47 |
2013-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
