|
287951
|
- |
|
ibm
|
lotus_sametime
|
The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of shared links by leveraging meeting-attendance privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0537
|
2024-11-21 10:47 |
2013-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287952
|
- |
|
f5
|
nginx
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) error.log files, which allows local users to obtain sensitive informati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0337
|
2024-11-21 10:47 |
2013-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287953
|
- |
|
ibm
|
storwize_v7000_unified_software
storwize_v7000_unified
|
IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.2.0 does not properly handle device files that are created with the NFS protocol but accessed with a non-NFS protocol, which allows remote authen…
|
CWE-20
Improper Input Validation
|
CVE-2013-0500
|
2024-11-21 10:47 |
2013-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287954
|
- |
|
ibm
|
infosphere_optim_data_growth_for_oracle_e-business_suite
|
Cross-site request forgery (CSRF) vulnerability in the Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to hijack the…
|
CWE-352
Origin Validation Error
|
CVE-2013-0580
|
2024-11-21 10:47 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287955
|
- |
|
ibm
|
infosphere_optim_data_growth_for_oracle_e-business_suite
|
The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote attackers to impersonate arbitrary users by leveraging access to a legitimate user's…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0579
|
2024-11-21 10:47 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287956
|
- |
|
ibm
|
infosphere_optim_data_growth_for_oracle_e-business_suite
|
The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to bypass intended access restrictions and create, modify, or de…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0577
|
2024-11-21 10:47 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287957
|
- |
|
ibm
|
maximo_asset_management
|
SQL injection vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 7.1 through 7.1.1.12 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-0451
|
2024-11-21 10:47 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287958
|
- |
|
libarchive
canonical
opensuse
fedoraproject
freebsd
|
libarchive
ubuntu_linux
opensuse
fedora
freebsd
|
Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers …
|
CWE-189
Numeric Errors
|
CVE-2013-0211
|
2024-11-21 10:47 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287959
|
- |
|
ibm
|
rational_clearquest
|
Cross-site request forgery (CSRF) vulnerability in the Web Client in IBM Rational ClearQuest 7.1 before 7.1.2.12, 8.0 before 8.0.0.8, and 8.0.1 before 8.0.1.1 allows remote attackers to hijack the au…
|
CWE-352
Origin Validation Error
|
CVE-2013-0598
|
2024-11-21 10:47 |
2013-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287960
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administrative console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47 allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0596
|
2024-11-21 10:47 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
