|
285531
|
- |
|
axis
|
media_control_activex_control
|
The AXIS Media Control (AMC) ActiveX control (AxisMediaControlEmb.dll) 6.2.10.11 for AXIS network cameras allows remote attackers to create or overwrite arbitrary files via a file path to the (1) Sta…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3543
|
2024-11-21 10:53 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285532
|
- |
|
ovislink
|
airlive_wl2600cam
|
Directory traversal vulnerability in cgi-bin/admin/fileread in AirLive WL2600CAM and possibly other camera models allows remote attackers to read arbitrary files via a .. (dot dot) in the READ.filePa…
|
CWE-22
Path Traversal
|
CVE-2013-3541
|
2024-11-21 10:53 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285533
|
- |
|
ovislink
|
airlive_od-2025hd
airlive_poe100hd
airlive_od-2060hd
airlive_poe250hd
airlive_poe200hd
airlive_poe2600hd
|
Cross-site request forgery (CSRF) vulnerability in cgi-bin/admin/usrgrp.cgi in AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models allows…
|
CWE-352
Origin Validation Error
|
CVE-2013-3540
|
2024-11-21 10:53 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285534
|
- |
|
corel
|
pdf_fusion
|
Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a director…
|
NVD-CWE-Other
|
CVE-2013-3248
|
2024-11-21 10:53 |
2013-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285535
|
- |
|
baramundi
|
management_suite
|
Baramundi Management Suite 7.5 through 8.9 uses cleartext for (1) client-server communication and (2) data storage, which allows remote attackers to obtain sensitive information by sniffing the netwo…
|
CWE-310
Cryptographic Issues
|
CVE-2013-3593
|
2024-11-21 10:53 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285536
|
- |
|
sony
ovislink
|
snc_dh280
snc_dh140t
snc_dh140
snc_dh180
snc_ch240
snc_ch180
snc_ch280
snc_dh240
snc_dh240t
snc_ch140
airlive_wl2600cam
|
Cross-site request forgery (CSRF) vulnerability in the command/user.cgi in Sony SNC CH140, SNC CH180, SNC CH240, SNC CH280, SNC DH140, SNC DH140T, SNC DH180, SNC DH240, SNC DH240T, SNC DH280, and pos…
|
CWE-352
Origin Validation Error
|
CVE-2013-3539
|
2024-11-21 10:53 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285537
|
- |
|
emc
|
vplex_geo
vplex_metro
vplex_local
geosynchrony
|
EMC VPLEX before VPLEX GeoSynchrony 5.2 SP1 uses cleartext for storage of the LDAP/AD bind password, which allows local users to obtain sensitive information by reading the management-server configur…
|
CWE-255
Credentials Management
|
CVE-2013-3278
|
2024-11-21 10:53 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285538
|
- |
|
cisco
|
video_surveillance_operations_manager
|
The administrative web interface in Cisco Video Surveillance Operations Manager does not properly perform authentication, which allows remote attackers to watch video feeds via a crafted URL, aka Bug…
|
CWE-287
Improper Authentication
|
CVE-2013-3417
|
2024-11-21 10:53 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285539
|
- |
|
knowledgeview
|
knowledgeview_editorial_and_management_application
|
Cross-site scripting (XSS) vulnerability in the KnowledgeView Editorial and Management application allows remote attackers to inject arbitrary web script or HTML via the username parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3616
|
2024-11-21 10:53 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285540
|
- |
|
dell
|
idrac6_firmware
idrac6_monolithic
idrac7_firmware
idrac7
|
Cross-site scripting (XSS) vulnerability in the login page in the Administrative Web Interface on Dell iDRAC6 monolithic devices with firmware before 1.96 and iDRAC7 devices with firmware before 1.46…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3589
|
2024-11-21 10:53 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
