|
288071
|
6.1 |
MEDIUM
Network
|
redhat
|
cloudforms
manageiq_enterprise_virtualization_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in ManageIQ EVM allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0186
|
2024-11-21 10:47 |
2019-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288072
|
5.5 |
MEDIUM
Local
|
redislabs
|
redis
|
Insecure temporary file vulnerability in Redis 2.6 related to /tmp/redis.ds.
|
CWE-20
Improper Input Validation
|
CVE-2013-0180
|
2024-11-21 10:47 |
2019-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288073
|
5.5 |
MEDIUM
Local
|
redislabs
|
redis
|
Insecure temporary file vulnerability in Redis before 2.6 related to /tmp/redis-%p.vm.
|
CWE-20
Improper Input Validation
|
CVE-2013-0178
|
2024-11-21 10:47 |
2019-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288074
|
7.0 |
HIGH
Local
|
ibm
|
lotus_notes
|
The Notes Client Single Logon feature in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3, and 9.0 on Windows allows local users to discover passwords via vectors involving an unspecified operat…
|
CWE-200
Information Exposure
|
CVE-2013-0522
|
2024-11-21 10:47 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288075
|
5.3 |
MEDIUM
Adjacent
|
ibm
|
network_operating_system
|
The Fibre Channel over Ethernet (FCoE) feature in IBM System Networking and Blade Network Technology (BNT) switches running IBM Networking Operating System (aka NOS, formerly BLADE Operating System) …
|
CWE-200
Information Exposure
|
CVE-2013-0570
|
2024-11-21 10:47 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288076
|
6.1 |
MEDIUM
Network
|
ibm
|
inotes
|
Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified ve…
|
CWE-601
Open Redirect
|
CVE-2013-0594
|
2024-11-21 10:47 |
2018-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288077
|
5.4 |
MEDIUM
Network
|
ibm
|
inotes
|
Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0592
|
2024-11-21 10:47 |
2018-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288078
|
7.5 |
HIGH
Network
|
ibm
|
inotes
|
IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. IBM X-For…
|
CWE-200
Information Exposure
|
CVE-2013-0589
|
2024-11-21 10:47 |
2018-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288079
|
8.8 |
HIGH
Network
|
redhat
|
manageiq_enterprise_virtualization_manager
|
Cross-site request forgery (CSRF) vulnerability in ManageIQ Enterprise Virtualization Manager (EVM) allows remote attackers to hijack the authentication of users for requests that have unspecified im…
|
CWE-352
Origin Validation Error
|
CVE-2013-0185
|
2024-11-21 10:47 |
2018-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288080
|
8.8 |
HIGH
Network
|
apache
|
vcl
|
The Privileges portion of the web GUI and the XMLRPC API in Apache VCL 2.3.x before 2.3.2, 2.2.x before 2.2.2 and 2.1 allow remote authenticated users with nodeAdmin, manageGroup, resourceGrant, or u…
|
CWE-264
CWE-20
Permissions, Privileges, and Access Controls
Improper Input Validation
|
CVE-2013-0267
|
2024-11-21 10:47 |
2018-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
