|
286821
|
- |
|
cisco
|
unified_communications_manager
|
Multiple untrusted search path vulnerabilities in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allow local users to gain privileges by leveraging unspecified file-permission and…
|
NVD-CWE-Other
|
CVE-2013-3403
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286822
|
- |
|
cisco
|
unified_communications_manager
|
An unspecified function in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(2) allows remote authenticated users to execute arbitrary commands via unknown vectors, aka Bug ID CSCuh73440.
|
CWE-94
Code Injection
|
CVE-2013-3402
|
2024-11-21 10:53 |
2013-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286823
|
- |
|
mdolon
|
sharebar
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Sharebar plugin 1.2.5 for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) add o…
|
CWE-352
Origin Validation Error
|
CVE-2013-3491
|
2024-11-21 10:53 |
2013-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286824
|
- |
|
wave
|
embassy_remote_administration_server
embassy_remote_administration_server_help_desk
|
SQL injection vulnerability in the Help Desk application in Wave EMBASSY Remote Administration Server (ERAS) allows remote authenticated users to execute arbitrary SQL commands via the ct100$4MainCon…
|
CWE-78
CWE-89
OS Command
SQL Injection
|
CVE-2013-3578
|
2024-11-21 10:53 |
2013-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286825
|
- |
|
wave
|
embassy_remote_administration_server
embassy_remote_administration_server_help_desk
|
SQL injection vulnerability in the Help Desk application in Wave EMBASSY Remote Administration Server (ERAS) allows remote attackers to execute arbitrary SQL commands via the ct100$4MainController$Te…
|
CWE-89
SQL Injection
|
CVE-2013-3577
|
2024-11-21 10:53 |
2013-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286826
|
- |
|
cisco
|
secure_access_control_system
|
The web interface in Cisco Secure Access Control System (ACS) does not properly suppress error-condition details, which allows remote authenticated users to obtain sensitive information via an unspec…
|
CWE-200
Information Exposure
|
CVE-2013-3428
|
2024-11-21 10:53 |
2013-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286827
|
- |
|
cisco
|
secure_access_control_system
|
Cross-site request forgery (CSRF) vulnerability in Administration and View pages in Cisco Secure Access Control System (ACS) allows remote attackers to hijack the authentication of arbitrary users, a…
|
CWE-352
Origin Validation Error
|
CVE-2013-3424
|
2024-11-21 10:53 |
2013-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286828
|
- |
|
cisco
|
secure_access_control_system
|
Cross-site scripting (XSS) vulnerability in the web interface in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified field, aka …
|
CWE-79
Cross-site Scripting
|
CVE-2013-3423
|
2024-11-21 10:53 |
2013-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286829
|
- |
|
cisco
|
secure_access_control_system
|
Cross-site scripting (XSS) vulnerability in Administration pages in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified paramete…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3422
|
2024-11-21 10:53 |
2013-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286830
|
- |
|
cisco
|
secure_access_control_system
|
Cross-site scripting (XSS) vulnerability in the Help index page in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3421
|
2024-11-21 10:53 |
2013-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
