|
294981
|
- |
|
cisco
|
identity_services_engine_software
identity_services_engine
|
Cross-site scripting (XSS) vulnerability in the file-upload interface in Cisco Identity Services Engine (ISE) allows remote authenticated users to inject arbitrary web script or HTML via a crafted fi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5541
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294982
|
- |
|
cisco
|
identity_services_engine_software
identity_services_engine
|
The file-upload feature in Cisco Identity Services Engine (ISE) allows remote authenticated users to cause a denial of service (disk consumption and administration-interface outage) by uploading many…
|
CWE-399
Resource Management Errors
|
CVE-2013-5540
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294983
|
- |
|
cisco
|
identity_services_engine_software
identity_services_engine
|
The upload-dialog implementation in Cisco Identity Services Engine (ISE) allows remote authenticated users to upload files with an arbitrary file type, and consequently conduct attacks against unspec…
|
CWE-20
Improper Input Validation
|
CVE-2013-5539
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294984
|
- |
|
cisco
|
identity_services_engine_software
identity_services_engine
|
The Sponsor Portal in Cisco Identity Services Engine (ISE) uses weak permissions for uploaded files, which allows remote attackers to read arbitrary files via a direct request, aka Bug ID CSCui67506.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5538
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294985
|
- |
|
cisco
|
video_surveillance_4500e_ip_camera
video_surveillance_4300e_ip_camera
video_surveillance_4000_ip_camera
|
The analytics page on Cisco Video Surveillance 4000 IP cameras has hardcoded credentials, which allows remote attackers to watch the video feed by leveraging knowledge of the password, aka Bug IDs CS…
|
CWE-255
Credentials Management
|
CVE-2013-5535
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294986
|
- |
|
cisco
|
webex_meetings_server
|
The deployment module in the server in Cisco WebEx Meeting Center does not properly validate the passphrase, which allows remote attackers to launch a deployment or cause a denial of service (deploym…
|
CWE-20
Improper Input Validation
|
CVE-2013-5529
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294987
|
- |
|
ibm
|
websphere_extreme_scale
|
The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to conduct phishing attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2013-5394
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294988
|
- |
|
ibm
|
websphere_extreme_scale
|
The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5393
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294989
|
- |
|
ibm
|
websphere_extreme_scale
|
Cross-site scripting (XSS) vulnerability in the monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 allows remote authenticated users to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5390
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294990
|
- |
|
infohr
|
hr_human_resource_information_system
|
HR Systems Strategies info:HR HRIS 7.9 does not properly protect the database password, which allows local users to bypass intended database restrictions by accessing the USERPW registry key and bypa…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5208
|
2024-11-21 10:57 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
