|
288091
|
- |
|
ibm
|
lotus_inotes
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to inject arbitrary web script or HTML via a shared mail file, aka SPR DKEN8PDNTX.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0525
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288092
|
- |
|
canonical
samba
ibm
|
ubuntu_linux
samba
storwize
|
The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS sh…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0454
|
2024-11-21 10:47 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288093
|
- |
|
openstack
canonical
|
essex
folsom
grizzly
ubuntu_linux
|
OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0335
|
2024-11-21 10:47 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288094
|
- |
|
ibm
|
tivoli_endpoint_manager
|
Cross-site scripting (XSS) vulnerability in Web Reports in IBM Tivoli Endpoint Manager (TEM) before 8.2.1372 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0453
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288095
|
- |
|
fedoraproject
|
sssd
|
The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which al…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0287
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288096
|
- |
|
siemens
|
simatic_pcs7
wincc
|
Directory traversal vulnerability in the web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote authenticated users to read arbitrary files v…
|
CWE-22
Path Traversal
|
CVE-2013-0679
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288097
|
- |
|
siemens
|
simatic_pcs7
wincc
|
Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, does not properly represent WebNavigator credentials in a database, which makes it easier for remote authenticated…
|
CWE-255
Credentials Management
|
CVE-2013-0678
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288098
|
- |
|
siemens
|
simatic_pcs7
wincc
|
The web server in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote attackers to obtain sensitive information or cause a denial of service via a craft…
|
CWE-200
Information Exposure
|
CVE-2013-0677
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288099
|
- |
|
siemens
|
simatic_pcs7
wincc
|
Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, does not properly assign privileges for the database containing WebNavigator credentials, which allows remote auth…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0676
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288100
|
- |
|
siemens
|
simatic_pcs7
wincc
|
Buffer overflow in CCEServer (aka the central communications component) in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote attackers to cause a deni…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0675
|
2024-11-21 10:47 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
