|
293691
|
- |
|
ibm
|
sterling_connect_enterprise_http_option
|
Cross-site scripting (XSS) vulnerability in the HTTP Option in IBM Sterling Connect:Enterprise 1.3 before 1.3.0.2 iFix 1 and 1.4 before 1.4.0.0 iFix 1 allows remote attackers to inject arbitrary web …
|
CWE-79
Cross-site Scripting
|
CVE-2013-6327
|
2024-11-21 10:59 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293692
|
- |
|
siemens
|
ruggedcom_rugged_operating_system
|
The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or (…
|
CWE-863
Incorrect Authorization
|
CVE-2013-6926
|
2024-11-21 10:59 |
2013-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293693
|
- |
|
siemens
|
ruggedcom_rugged_operating_system
|
The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value.
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2013-6925
|
2024-11-21 10:59 |
2013-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293694
|
- |
|
php
opensuse
apple
|
php
opensuse
mac_os_x
|
The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6420
|
2024-11-21 10:59 |
2013-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293695
|
- |
|
cisco
|
webex_sales_center
|
Cross-site scripting (XSS) vulnerability in the product-creation administrative page in Cisco WebEx Sales Center allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka …
|
CWE-79
Cross-site Scripting
|
CVE-2013-6711
|
2024-11-21 10:59 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293696
|
- |
|
cisco
|
webex_training_center
|
Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Training Center allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCul25567.
|
CWE-352
Origin Validation Error
|
CVE-2013-6710
|
2024-11-21 10:59 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293697
|
- |
|
cisco
|
webex_training_center
|
The registration component in Cisco WebEx Training Center provides the training-session URL before payment is completed, which allows remote attackers to bypass intended access restrictions and join …
|
CWE-200
Information Exposure
|
CVE-2013-6709
|
2024-11-21 10:59 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293698
|
- |
|
linux
|
linux_kernel
|
The recalculate_apic_map function in arch/x86/kvm/lapic.c in the KVM subsystem in the Linux kernel through 3.12.5 allows guest OS users to cause a denial of service (host OS crash) via a crafted ICR …
|
CWE-189
Numeric Errors
|
CVE-2013-6376
|
2024-11-21 10:59 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293699
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux
|
The KVM subsystem in the Linux kernel through 3.12.5 allows local users to gain privileges or cause a denial of service (system crash) via a VAPIC synchronization operation involving a page-end addre…
|
CWE-20
Improper Input Validation
|
CVE-2013-6368
|
2024-11-21 10:59 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293700
|
- |
|
linux
|
linux_kernel
|
The apic_get_tmcct function in arch/x86/kvm/lapic.c in the KVM subsystem in the Linux kernel through 3.12.5 allows guest OS users to cause a denial of service (divide-by-zero error and host OS crash)…
|
CWE-189
Numeric Errors
|
CVE-2013-6367
|
2024-11-21 10:59 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
