|
286691
|
- |
|
hot
|
hotbox_router_firmware
hotbox_router
|
goform/login on the HOT HOTBOX router with software 2.1.11 allows remote attackers to cause a denial of service (device crash) via crafted HTTP POST data.
|
CWE-20
Improper Input Validation
|
CVE-2013-5220
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286692
|
- |
|
hot
|
hotbox_router_firmware
hotbox_router
|
Directory traversal vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to read arbitrary files via a .. (dot dot) in a URI, as demonstrated by a request for /etc/pass…
|
CWE-22
Path Traversal
|
CVE-2013-5219
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286693
|
- |
|
hot
|
hotbox_router_firmware
hotbox_router
|
Cross-site scripting (XSS) vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to inject arbitrary web script or HTML via a crafted DHCP Host Name option, which is not…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5218
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286694
|
- |
|
adtran
|
aos
netvanta_7060
netvanta_7100
|
Cross-site scripting (XSS) vulnerability in the GUI login page in ADTRAN AOS before R10.8.1 on the NetVanta 7100 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5210
|
2024-11-21 10:57 |
2013-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286695
|
- |
|
joomla
|
joomla\!
|
Cross-site scripting (XSS) vulnerability in libraries/idna_convert/example.php in Joomla! 3.1.5 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5583
|
2024-11-21 10:57 |
2013-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286696
|
- |
|
ibm
|
security_access_manager_for_enterprise_single_sign-on
|
The IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to read log files by leveraging helpdesk privileges for a d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5420
|
2024-11-21 10:57 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286697
|
- |
|
ibm
|
security_access_manager_for_enterprise_single_sign-on
|
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5421
|
2024-11-21 10:57 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286698
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not invalidate a session upon a logout action, which allows remote attackers to bypass authentication by leveraging an unattended work…
|
CWE-287
Improper Authentication
|
CVE-2013-5413
|
2024-11-21 10:57 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286699
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote attackers to inject links and trigger unintended navigation or actions via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2013-5411
|
2024-11-21 10:57 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286700
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-5409
|
2024-11-21 10:57 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
