|
286881
|
- |
|
cisco
|
content_security_management_appliance
web_security_appliance
email_security_appliance_firmware
|
Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Ap…
|
CWE-352
Origin Validation Error
|
CVE-2013-3395
|
2024-11-21 10:53 |
2013-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286882
|
- |
|
choice_wireless
|
wixfmr-111
|
ajax.cgi in the web interface on the Choice Wireless Green Packet WIXFMR-111 4G WiMax modem allows remote attackers to obtain sensitive information via an Ajax (1) wmxState or (2) netState request.
|
CWE-287
Improper Authentication
|
CVE-2013-3581
|
2024-11-21 10:53 |
2013-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286883
|
- |
|
cisco
|
ironport_asyncos
|
The IronPort Spam Quarantine (ISQ) component in the web framework in IronPort AsyncOS on Cisco Email Security Appliance devices before 7.1.5-106 and 7.3, 7.5, and 7.6 before 7.6.3-019 and Content Sec…
|
CWE-399
Resource Management Errors
|
CVE-2013-3386
|
2024-11-21 10:53 |
2013-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286884
|
- |
|
cisco
|
ironport_asyncos
|
The management GUI in the web framework in IronPort AsyncOS on Cisco Web Security Appliance devices before 7.1.3-013, 7.5 before 7.5.0-838, and 7.7 before 7.7.0-602; Email Security Appliance devices …
|
CWE-399
Resource Management Errors
|
CVE-2013-3385
|
2024-11-21 10:53 |
2013-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286885
|
- |
|
cisco
|
ironport_asyncos
|
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices before 7.1.3-013, 7.5 before 7.5.0-838, and 7.7 before 7.7.0-550; Email Security Appliance devices before 7.1.5-104, 7.3 …
|
CWE-94
Code Injection
|
CVE-2013-3384
|
2024-11-21 10:53 |
2013-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286886
|
- |
|
cisco
|
ironport_asyncos
|
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices before 7.1.3-013, 7.5 before 7.5.0-838, and 7.7 before 7.7.0-550 allows remote authenticated users to execute arbitrary c…
|
CWE-94
Code Injection
|
CVE-2013-3383
|
2024-11-21 10:53 |
2013-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286887
|
- |
|
cisco
|
prime_central_for_hosted_collaboration_solution
|
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance provides different responses to requests for arbitrary pathnames depending on whether the pathname exists, w…
|
CWE-200
Information Exposure
|
CVE-2013-3398
|
2024-11-21 10:53 |
2013-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286888
|
- |
|
cisco
|
unified_communications_manager
|
Cross-site request forgery (CSRF) vulnerability in the Unified Serviceability component in Cisco Unified Communications Manager (CUCM) allows remote attackers to hijack the authentication of arbitrar…
|
CWE-352
Origin Validation Error
|
CVE-2013-3397
|
2024-11-21 10:53 |
2013-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286889
|
- |
|
cisco
|
content_security_management_appliance
|
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Content Security Management on Security Management Appliance (SMA) devices allows remote attackers to inject arbitrary web scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3396
|
2024-11-21 10:53 |
2013-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286890
|
- |
|
cisco
|
jabber
virtualization_experience_media_engine
|
The Precision Video Engine component in Cisco Jabber for Windows and Cisco Virtualization Experience Media Engine allows remote attackers to cause a denial of service (process crash and call disconne…
|
CWE-20
Improper Input Validation
|
CVE-2013-3393
|
2024-11-21 10:53 |
2013-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
