|
285021
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administrative console in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.31, 8.0 before 8.0.0.8, and 8.5 before 8.5.5.1 allows remote authenti…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5418
|
2024-11-21 10:57 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285022
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.31, 8.0 before 8.0.0.8, and 8.5 before 8.5.5.1 allows remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5417
|
2024-11-21 10:57 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285023
|
- |
|
ibm
|
websphere_application_server
|
The migration functionality in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.31, 8.0 before 8.0.0.8, and 8.5 before 8.5.5.1 does not properly support the distinction between the admin role …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5414
|
2024-11-21 10:57 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285024
|
- |
|
cisco
|
nexus_1000v
|
The license-installation module on the Cisco Nexus 1000V switch 4.2(1)SV1(5.2b) and earlier for VMware vSphere, Cisco Nexus 1000V switch 5.2(1)SM1(5.1) for Microsoft Hyper-V, and Cisco Virtual Securi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5556
|
2024-11-21 10:57 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285025
|
- |
|
ibm
|
websphere_portal
|
IBM WebSphere Portal 6.0 through 6.0.1.7, 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF25, and 8.0 through 8.0.0.1 CF08 allows remote attackers to read arbitrary file…
|
CWE-200
Information Exposure
|
CVE-2013-5454
|
2024-11-21 10:57 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285026
|
- |
|
ibm
|
websphere_virtual_enterprise
|
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Virtual Enterprise 6.1 before 6.1.1.6 and 7.0 before 7.0.0.4 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5425
|
2024-11-21 10:57 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285027
|
- |
|
apple
|
iphone_os
|
The App Store component in Apple iOS before 7.0.4 does not properly enforce an intended transaction-time password requirement, which allows local users to complete a (1) App purchase or (2) In-App pu…
|
CWE-255
Credentials Management
|
CVE-2013-5193
|
2024-11-21 10:57 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285028
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The auto-update implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier allows remote attackers to cause a denial of service (device reload) via crafted update data, ak…
|
CWE-20
Improper Input Validation
|
CVE-2013-5568
|
2024-11-21 10:57 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285029
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The IPv6 implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1.3 and earlier, when NAT64 or NAT66 is enabled, does not properly process NAT rules, which allows remote attackers to ca…
|
CWE-20
Improper Input Validation
|
CVE-2013-5560
|
2024-11-21 10:57 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285030
|
- |
|
cisco
|
ios
content_services_gateway
|
Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG) devices does not properly implement the "parse error drop" feature, which allows remote attackers to bypass intended access restri…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5552
|
2024-11-21 10:57 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
