|
285531
|
- |
|
cisco
|
prime_data_center_network_manager
|
Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary text files via an XML external entity declaration in conjunction with an entity reference, relat…
|
CWE-200
Information Exposure
|
CVE-2013-5490
|
2024-11-21 10:57 |
2013-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285532
|
- |
|
cisco
|
prime_data_center_network_manager
|
DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCue77029.
|
CWE-200
Information Exposure
|
CVE-2013-5487
|
2024-11-21 10:57 |
2013-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285533
|
- |
|
cisco
|
prime_data_center_network_manager
|
Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to write arbitrary files via the c…
|
CWE-78
OS Command
|
CVE-2013-5486
|
2024-11-21 10:57 |
2013-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285534
|
- |
|
glpi-project
|
glpi
|
inc/central.class.php in GLPI before 0.84.2 does not attempt to make install/install.php unavailable after an installation is completed, which allows remote attackers to conduct cross-site request fo…
|
CWE-352
Origin Validation Error
|
CVE-2013-5696
|
2024-11-21 10:57 |
2013-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285535
|
- |
|
cisco
|
mediasense
|
Cross-site scripting (XSS) vulnerability in the oraservice page in Cisco MediaSense allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuj23328.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5501
|
2024-11-21 10:57 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285536
|
- |
|
cisco
|
mediasense
|
Multiple cross-site scripting (XSS) vulnerabilities in the oraadmin service page in Cisco MediaSense allow remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bu…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5500
|
2024-11-21 10:57 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285537
|
- |
|
cisco
|
intrusion_prevention_system
|
The authentication manager process in the web framework in Cisco Intrusion Prevention System (IPS) does not properly handle user tokens, which allows remote attackers to cause a denial of service (in…
|
CWE-287
Improper Authentication
|
CVE-2013-5497
|
2024-11-21 10:57 |
2013-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285538
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive information about use of the window.webkitRequestAnimationFrame API via an IFRAM…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5159
|
2024-11-21 10:57 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285539
|
- |
|
apple
|
iphone_os
|
The Social subsystem in Apple iOS before 7 does not properly restrict access to the cache of Twitter icons, which allows physically proximate attackers to obtain sensitive information about recent Tw…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5158
|
2024-11-21 10:57 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285540
|
- |
|
apple
|
iphone_os
|
The Twitter subsystem in Apple iOS before 7 does not require API conformity for access to Twitter daemon interfaces, which allows attackers to post Tweets via a crafted app that sends direct requests…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5157
|
2024-11-21 10:57 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
