|
285671
|
- |
|
liftweb
|
lift
|
The JsonParser class in json/JsonParser.scala in Lift before 2.5 interprets a certain end-index value as a length value, which allows remote authenticated users to obtain sensitive information from o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3300
|
2024-11-21 10:53 |
2013-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285672
|
- |
|
cisco
|
video_surveillance_manager
|
Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and …
|
CWE-287
Improper Authentication
|
CVE-2013-3431
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285673
|
- |
|
cisco
|
video_surveillance_manager
|
Cisco Video Surveillance Manager (VSM) before 7.0.0 allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Br…
|
CWE-287
Improper Authentication
|
CVE-2013-3430
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285674
|
- |
|
cisco
|
video_surveillance_manager
|
Multiple directory traversal vulnerabilities in Cisco Video Surveillance Manager (VSM) before 7.0.0 allow remote attackers to read system files via a crafted URL, related to the Cisco_VSBWT (aka Broa…
|
CWE-22
Path Traversal
|
CVE-2013-3429
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285675
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
|
Cross-site scripting (XSS) vulnerability in the WebVPN portal login page on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to inject arbitrary web script or HTML via a craft…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3414
|
2024-11-21 10:53 |
2013-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285676
|
- |
|
cisco
|
unified_meetingplace_web_conferencing
|
The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, ak…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3438
|
2024-11-21 10:53 |
2013-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285677
|
- |
|
cisco
|
unified_operations_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote attackers to inject arbitrary web script or HTML, and obtain i…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3440
|
2024-11-21 10:53 |
2013-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285678
|
- |
|
cisco
|
unified_operations_manager
|
Cross-site scripting (XSS) vulnerability in Cisco Unified Operations Manager allows remote attackers to inject arbitrary web script or HTML via a crafted URL in an unspecified HTTP header field, aka …
|
CWE-79
Cross-site Scripting
|
CVE-2013-3439
|
2024-11-21 10:53 |
2013-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285679
|
- |
|
cisco
|
aironet_3600e
aironet_3600
aironet_3600p
aironet_3600i
|
Cisco Aironet 3600 access points allow remote attackers to cause a denial of service (memory corruption and device crash) by disrupting Cisco Wireless LAN Controller communication and consequently fo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3441
|
2024-11-21 10:53 |
2013-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285680
|
- |
|
cisco
|
unified_operations_manager
|
SQL injection vulnerability in the management application in Cisco Unified Operations Manager allows remote authenticated users to execute arbitrary SQL commands via an entry field, aka Bug ID CSCud8…
|
CWE-89
SQL Injection
|
CVE-2013-3437
|
2024-11-21 10:53 |
2013-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
