|
287291
|
- |
|
siemens
|
wincc
|
Open redirect vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks by leveraging improper …
|
CWE-20
Improper Input Validation
|
CVE-2013-4912
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287292
|
- |
|
siemens
|
wincc
|
Cross-site request forgery (CSRF) vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to hijack the authentication of unspecified victims by leveraging imprope…
|
CWE-352
Origin Validation Error
|
CVE-2013-4911
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287293
|
- |
|
symantec
|
web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
|
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 does not properly implement RADIUS authentication, which allows remote attackers to execute arbitrary code by leveragin…
|
CWE-20
Improper Input Validation
|
CVE-2013-4673
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287294
|
- |
|
symantec
|
web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
|
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 has an incorrect sudoers file, which allows local users to bypass intended access restrictions via a command.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4672
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287295
|
- |
|
symantec
|
web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
|
Cross-site request forgery (CSRF) vulnerability in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allows remote authenticated users to hijack the authentication of un…
|
CWE-352
Origin Validation Error
|
CVE-2013-4671
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287296
|
- |
|
symantec
|
web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
|
Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allow remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4670
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287297
|
- |
|
minibb
|
minibb
|
Multiple cross-site scripting (XSS) vulnerabilities in bb_admin.php in MiniBB before 3.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) forum_name, (2) forum_group, (3) f…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5020
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287298
|
- |
|
vector
|
ultra_mini_httpd
|
Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5019
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287299
|
- |
|
symantec
|
encryption_management_server
pgp_universal_server
|
Cross-site scripting (XSS) vulnerability in the Web Email Protection component in Symantec Encryption Management Server (formerly Symantec PGP Universal Server) before 3.3.0 MP2 allows remote authent…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4674
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287300
|
- |
|
westerndigital
|
my_net_n900
my_net_n900c
my_net_n750
|
main_internet.php on the Western Digital My Net N600 and N750 with firmware 1.03.12 and 1.04.16, and the N900 and N900C with firmware 1.05.12, 1.06.18, and 1.06.28, allows remote attackers to discove…
|
CWE-255
Credentials Management
|
CVE-2013-5006
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
