|
296081
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Cross-site scripting (XSS) vulnerability in admin/editevent.php in CMS Made Simple (CMSMS) 1.11.9 allows remote authenticated users with the "Modify Events" permission to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2013-3929
|
2024-11-21 10:54 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296082
|
- |
|
easytimestudio
|
easy_file_manager
|
Directory traversal vulnerability in Easytime Studio Easy File Manager 1.1 for iOS allows remote attackers to read arbitrary files via a ..%2f (encoded dot dot slash) to the default URI.
|
CWE-22
Path Traversal
|
CVE-2013-3921
|
2024-11-21 10:54 |
2013-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296083
|
- |
|
novell
|
open_enterprise_server
|
The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 (OES 2) Linux, and OES 11 Linux Gold and SP1, does not make the intended SSL_free and SSL_s…
|
CWE-20
Improper Input Validation
|
CVE-2013-3707
|
2024-11-21 10:54 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296084
|
- |
|
novell
|
iprint
|
The id1.GetPrinterURLList function in Novell iPrint Client before 5.93 allows remote attackers to cause a denial of service via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2013-3708
|
2024-11-21 10:54 |
2013-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296085
|
- |
|
jahia
|
jahia_xcm
|
Cross-site scripting (XSS) vulnerability in Jahia xCM before 6.6.2 allows remote authenticated users to inject arbitrary web script or HTML via the "about me" field.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3920
|
2024-11-21 10:54 |
2013-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296086
|
- |
|
ibm
|
infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management_collaboration_server
|
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Master Data Management Server for Product Information Management 9.x before 9.1 FP13, and IBM InfoSphere Master Data Management - Collaborat…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4036
|
2024-11-21 10:54 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296087
|
- |
|
savysoda
|
wifi_free_hd
|
Directory traversal vulnerability in SavySoda WiFi HD Free before 7.0 allows remote attackers to read arbitrary files via a ..%2f (encoded dot dot slash) in a GET request.
|
CWE-22
Path Traversal
|
CVE-2013-3923
|
2024-11-21 10:54 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296088
|
- |
|
gummybearstudios
|
ftp_drive_\+_http_server
|
Directory traversal vulnerability in Gummy Bear Studios FTP Drive + HTTP Server 1.0.4 and earlier allows remote attackers to read arbitrary files via a ..%2f (encoded dot dot slash) in a GET request.
|
CWE-22
Path Traversal
|
CVE-2013-3922
|
2024-11-21 10:54 |
2013-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296089
|
- |
|
ibm
|
java
|
Unspecified vulnerability in IBM Java SDK 5.0.0 before SR16 FP4, 7.0.0 before SR6, 6.0.1 before SR7, and 6.0.0 before SR15 allows remote attackers to access restricted classes via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2013-4041
|
2024-11-21 10:54 |
2013-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296090
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) Liberty Profile 8.5 before 8.5.5.1 uses weak permissions for unspecified files, which allows local users to obtain sensitive information via standard filesystem…
|
CWE-310
Cryptographic Issues
|
CVE-2013-4006
|
2024-11-21 10:54 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
