|
285001
|
- |
|
adobe
|
flash_player
air
air_sdk
|
Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before 11.9.900.170 on Windows and Mac OS X and before 11.2.202.332 on Linux, Adobe AIR before 3.9.0.1380, Adobe AIR SDK before 3.9.0.1380…
|
CWE-94
Code Injection
|
CVE-2013-5331
|
2024-11-21 10:57 |
2013-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285002
|
- |
|
ibm
|
rational_requirements_composer
rational_quality_manager
rational_team_concert
|
Cross-site scripting (XSS) vulnerability in the search implementation in IBM Rational Quality Manager (RQM) 2.0 through 2.0.1.1, 3.x before 3.0.1.6 iFix 1, and 4.x before 4.0.5, as used in Rational T…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5404
|
2024-11-21 10:57 |
2013-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285003
|
- |
|
ibm
|
forms_viewer
|
Stack-based buffer overflow in IBM Forms Viewer 4.x before 4.0.0.3 and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary code via an XFDL form with a long fontname value.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5447
|
2024-11-21 10:57 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285004
|
- |
|
sharetronix
|
sharetronix
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Sharetronix 3.1.1 allow remote attackers to hijack the authentication of administrators for requests that (1) change configuration settin…
|
CWE-352
Origin Validation Error
|
CVE-2013-5355
|
2024-11-21 10:57 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285005
|
- |
|
sharetronix
|
sharetronix
|
Multiple SQL injection vulnerabilities in Sharetronix 3.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) fb_user_id or (2) tw_user_id parameter to signup.
|
CWE-89
SQL Injection
|
CVE-2013-5354
|
2024-11-21 10:57 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285006
|
- |
|
ibm
|
smartcloud_provisioning
|
IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated users to modify virtual-system deployment via deployer.virtualsystems CLI commands, as demonstrated by a deletion using a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5455
|
2024-11-21 10:57 |
2013-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285007
|
- |
|
rockmongo
|
rockmongo
|
Multiple cross-site scripting (XSS) vulnerabilities in the xn function in RockMongo 1.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) db parameter on the log…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5108
|
2024-11-21 10:57 |
2013-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285008
|
- |
|
ibm
|
filenet_content_manager
|
Cross-site scripting (XSS) vulnerability in workingSet.jsp in IBM Eclipse Help System (IEHS), as used in the installable InfoCenter component in IBM FileNet Content Manager 4.5.1, 5.0.0, 5.1.0, and 5…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5449
|
2024-11-21 10:57 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285009
|
- |
|
checkpoint
|
endpoint_security
|
Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attac…
|
CWE-255
Credentials Management
|
CVE-2013-5636
|
2024-11-21 10:57 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285010
|
- |
|
checkpoint
|
endpoint_security
|
Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to by…
|
CWE-255
Credentials Management
|
CVE-2013-5635
|
2024-11-21 10:57 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
