|
295681
|
- |
|
cisco
|
webex
|
The Meeting Center component in Cisco WebEx 11 generates different error messages for invalid file-access attempts depending on whether a file exists, which allows remote authenticated users to enume…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3425
|
2024-11-21 10:53 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295682
|
- |
|
openx
|
openx
|
Multiple cross-site scripting (XSS) vulnerabilities in OpenX Source 2.8.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) package parameter to www/admin/plugin-…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3515
|
2024-11-21 10:53 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295683
|
- |
|
trustgo
|
antivirus_\&_mobile_security
|
The TrustGo Antivirus & Mobile Security application before 1.3.6 for Android allows attackers to cause a denial of service (application crash) via a crafted application that sends an intent to com.tr…
|
CWE-20
Improper Input Validation
|
CVE-2013-3580
|
2024-11-21 10:53 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295684
|
- |
|
cisco
|
identity_services_engine
|
The firewall subsystem in Cisco Identity Services Engine has an incorrect rule for open ports, which allows remote attackers to cause a denial of service (CPU consumption or process crash) via a floo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3445
|
2024-11-21 10:53 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295685
|
- |
|
liftweb
|
lift
|
The JsonParser class in json/JsonParser.scala in Lift before 2.5 interprets a certain end-index value as a length value, which allows remote authenticated users to obtain sensitive information from o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3300
|
2024-11-21 10:53 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295686
|
- |
|
cisco
|
video_surveillance_manager
|
Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and …
|
CWE-287
Improper Authentication
|
CVE-2013-3431
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295687
|
- |
|
cisco
|
video_surveillance_manager
|
Cisco Video Surveillance Manager (VSM) before 7.0.0 allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Br…
|
CWE-287
Improper Authentication
|
CVE-2013-3430
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295688
|
- |
|
cisco
|
video_surveillance_manager
|
Multiple directory traversal vulnerabilities in Cisco Video Surveillance Manager (VSM) before 7.0.0 allow remote attackers to read system files via a crafted URL, related to the Cisco_VSBWT (aka Broa…
|
CWE-22
Path Traversal
|
CVE-2013-3429
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295689
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
|
Cross-site scripting (XSS) vulnerability in the WebVPN portal login page on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to inject arbitrary web script or HTML via a craft…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3414
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295690
|
- |
|
cisco
|
unified_meetingplace_web_conferencing
|
The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, ak…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3438
|
2024-11-21 10:53 |
2013-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
