|
285391
|
- |
|
imperva
|
securesphere
|
The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote attackers to obtain sensitive information via (1) a direct request to dwr/call/plaincall/Asyn…
|
CWE-22
Path Traversal
|
CVE-2013-4093
|
2024-11-21 10:54 |
2013-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285392
|
- |
|
imperva
|
securesphere
|
The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows context-dependent attackers to obtain sensitive information by leveraging the presence of (1) a sess…
|
CWE-255
Credentials Management
|
CVE-2013-4092
|
2024-11-21 10:54 |
2013-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285393
|
- |
|
imperva
|
securesphere
|
The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete attribute for the password (aka j_password) field on the secsphLogin.jsp …
|
CWE-255
Credentials Management
|
CVE-2013-4091
|
2024-11-21 10:54 |
2013-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285394
|
- |
|
kent-web
|
clip-mail
|
Cross-site scripting (XSS) vulnerability in KENT-WEB CLIP-MAIL before 3.4, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecifi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3649
|
2024-11-21 10:54 |
2013-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285395
|
- |
|
kent-web
|
post-mail
|
Cross-site scripting (XSS) vulnerability in KENT-WEB POST-MAIL before 6.7, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecifi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3648
|
2024-11-21 10:54 |
2013-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285396
|
- |
|
oracle
|
jre
jdk
|
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployme…
|
NVD-CWE-noinfo
|
CVE-2013-3744
|
2024-11-21 10:54 |
2013-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285397
|
- |
|
sun
oracle
|
jre
jdk
|
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 Update 45 and earlier and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, in…
|
NVD-CWE-noinfo
|
CVE-2013-3743
|
2024-11-21 10:54 |
2013-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285398
|
- |
|
siemens
|
comos
|
Unspecified vulnerability in the client library in Siemens COMOS 9.2 before 9.2.0.6.10 and 10.0 before 10.0.3.0.4 allows local users to obtain unintended write access to the database by leveraging re…
|
NVD-CWE-noinfo
|
CVE-2013-3927
|
2024-11-21 10:54 |
2013-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285399
|
- |
|
cybozu
|
cybozu_live
|
The WebView class in the Cybozu Live application before 2.0.1 for Android allows attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that place…
|
CWE-200
Information Exposure
|
CVE-2013-3647
|
2024-11-21 10:54 |
2013-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285400
|
- |
|
cybozu
|
cybozu_live
|
The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.…
|
CWE-17
Code
|
CVE-2013-3646
|
2024-11-21 10:54 |
2013-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
