|
290911
|
- |
|
ibm
|
forms_viewer
|
Stack-based buffer overflow in IBM Forms Viewer 4.x before 4.0.0.3 and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary code via an XFDL form with a long fontname value.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5447
|
2024-11-21 10:57 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290912
|
- |
|
sharetronix
|
sharetronix
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Sharetronix 3.1.1 allow remote attackers to hijack the authentication of administrators for requests that (1) change configuration settin…
|
CWE-352
Origin Validation Error
|
CVE-2013-5355
|
2024-11-21 10:57 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290913
|
- |
|
sharetronix
|
sharetronix
|
Multiple SQL injection vulnerabilities in Sharetronix 3.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) fb_user_id or (2) tw_user_id parameter to signup.
|
CWE-89
SQL Injection
|
CVE-2013-5354
|
2024-11-21 10:57 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290914
|
- |
|
ibm
|
smartcloud_provisioning
|
IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated users to modify virtual-system deployment via deployer.virtualsystems CLI commands, as demonstrated by a deletion using a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5455
|
2024-11-21 10:57 |
2013-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290915
|
- |
|
rockmongo
|
rockmongo
|
Multiple cross-site scripting (XSS) vulnerabilities in the xn function in RockMongo 1.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) db parameter on the log…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5108
|
2024-11-21 10:57 |
2013-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290916
|
- |
|
ibm
|
filenet_content_manager
|
Cross-site scripting (XSS) vulnerability in workingSet.jsp in IBM Eclipse Help System (IEHS), as used in the installable InfoCenter component in IBM FileNet Content Manager 4.5.1, 5.0.0, 5.1.0, and 5…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5449
|
2024-11-21 10:57 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290917
|
- |
|
checkpoint
|
endpoint_security
|
Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attac…
|
CWE-255
Credentials Management
|
CVE-2013-5636
|
2024-11-21 10:57 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290918
|
- |
|
checkpoint
|
endpoint_security
|
Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to by…
|
CWE-255
Credentials Management
|
CVE-2013-5635
|
2024-11-21 10:57 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290919
|
- |
|
ibm
|
qradar_security_information_and_event_manager
|
The WinCollect agent in IBM Security QRadar SIEM before 7.1.1.569824 allows remote attackers to bypass intended access restrictions by injecting a (1) DLL or (2) configuration file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5463
|
2024-11-21 10:57 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290920
|
- |
|
ibm
|
qradar_security_information_and_event_manager
|
Cross-site scripting (XSS) vulnerability in the Right Click Plugin context menus in IBM Security QRadar SIEM 7.1 and 7.2 before 7.2 MR1 Patch 1 allows remote authenticated users to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5448
|
2024-11-21 10:57 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
