|
292881
|
- |
|
cisco
|
finesse
|
Absolute path traversal vulnerability in the web interface in Cisco Finesse allows remote attackers to read directory contents via a direct request to a directory URL, aka Bug ID CSCug16772.
|
CWE-22
Path Traversal
|
CVE-2013-3457
|
2024-11-21 10:53 |
2013-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292882
|
- |
|
cisco
|
finesse
|
Cisco Finesse allows remote attackers to obtain sensitive information by sniffing the network for HTTP query data, aka Bug ID CSCug16732.
|
CWE-255
Credentials Management
|
CVE-2013-3455
|
2024-11-21 10:53 |
2013-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292883
|
- |
|
mikejolley
|
download_monitor
|
Cross-site scripting (XSS) vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the p parame…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3262
|
2024-11-21 10:53 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292884
|
- |
|
sagelighteditor
|
sagelight
|
Integer overflow in Sagelight 4.4 and earlier allows remote attackers to execute arbitrary code via crafted width and height dimensions in a BMP file, which triggers a heap-based buffer overflow.
|
CWE-189
Numeric Errors
|
CVE-2013-3480
|
2024-11-21 10:53 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292885
|
- |
|
xhanch
|
my_twitter
|
Cross-site request forgery (CSRF) vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrator…
|
CWE-352
Origin Validation Error
|
CVE-2013-3253
|
2024-11-21 10:53 |
2013-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292886
|
- |
|
shareaholic
|
sexybookmarks
|
Cross-site request forgery (CSRF) vulnerability in the Shareaholic SexyBookmarks plugin 6.1.4.0 for WordPress allows remote attackers to hijack the authentication of users for requests that "manipula…
|
CWE-352
Origin Validation Error
|
CVE-2013-3256
|
2024-11-21 10:53 |
2013-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292887
|
- |
|
cisco
|
telepresence_system_tx9000
telepresence_system_tx9200
telepresence_system_software
telepresence_system_1300
telepresence_system_1300-65
telepresence_system_3000
telepresence_system_…
|
Cisco TelePresence System Software 1.10.1 and earlier on 500, 13X0, 1X00, 30X0, and 3X00 devices, and 6.0.3 and earlier on TX 9X00 devices, has a default password for the pwrecovery account, which ma…
|
CWE-255
Credentials Management
|
CVE-2013-3454
|
2024-11-21 10:53 |
2013-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292888
|
- |
|
cisco
|
unified_communications_manager
|
Cross-site request forgery (CSRF) vulnerability in the User WebDialer page in Cisco Unified Communications Manager (Unified CM) allows remote attackers to hijack the authentication of arbitrary users…
|
CWE-352
Origin Validation Error
|
CVE-2013-3450
|
2024-11-21 10:53 |
2013-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292889
|
- |
|
cisco
|
unified_communications_manager
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco Unified Communications Manager (Unified CM) allow remote attackers to hijack the authentication of arbitrary users for requests tha…
|
CWE-352
Origin Validation Error
|
CVE-2013-3451
|
2024-11-21 10:53 |
2013-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292890
|
- |
|
cisco
|
unified_communications_manager
|
The web portal in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to obtain sensitive stack-trace information via unspecified vectors that trigger a stack exceptio…
|
CWE-200
Information Exposure
|
CVE-2013-3442
|
2024-11-21 10:53 |
2013-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
