|
286701
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not properly restrict use of FRAME elements, which allows remote authenticated users to bypass intended access restrictions or obtain …
|
CWE-20
Improper Input Validation
|
CVE-2013-5407
|
2024-11-21 10:57 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286702
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspec…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5406
|
2024-11-21 10:57 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286703
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspec…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5405
|
2024-11-21 10:57 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286704
|
- |
|
ibm
|
content_navigator
|
IBM/ECMClient/configure/explodedformat/navigator/header.jsp in IBM Content Navigator 2.0.0, 2.0.1 before 2.0.1.2-ICN-FP002, and 2.0.2 before 2.0.2.1-ICN-FP001 allows remote attackers to conduct click…
|
CWE-20
Improper Input Validation
|
CVE-2013-5462
|
2024-11-21 10:57 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286705
|
- |
|
ibm
|
filenet_business_process_framework
|
IBM FileNet Business Process Framework 4.1.0 allows remote authenticated users to read arbitrary files or send TCP requests to intranet servers via XML data containing an external entity declaration …
|
CWE-200
Information Exposure
|
CVE-2013-5452
|
2024-11-21 10:57 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286706
|
- |
|
ibm
|
infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management_collaboration_server
|
Session fixation vulnerability in IBM InfoSphere Master Data Management - Collaborative Edition 10.x before 10.1 IF5 and 11.0 before IF1 and InfoSphere Master Data Management Server for Product Infor…
|
CWE-287
Improper Authentication
|
CVE-2013-5426
|
2024-11-21 10:57 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286707
|
- |
|
ibm
|
rational_clearcase
|
The Web Client in IBM Rational ClearQuest 7.1 through 7.1.2.12, 8.0.0.x before 8.0.0.9, and 8.0.1.x before 8.0.1.2, when a multi-database dataset exists, allows remote attackers to read database name…
|
CWE-200
Information Exposure
|
CVE-2013-5422
|
2024-11-21 10:57 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286708
|
- |
|
ibm
|
db2
db2_connect
db2_purescale_feature_9.8
|
The XSLT library in IBM DB2 and DB2 Connect 9.5 through 10.5, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service via unspe…
|
NVD-CWE-noinfo
|
CVE-2013-5466
|
2024-11-21 10:57 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286709
|
- |
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 8.0, 8.1, 8.5, 8.7, and 9.1 allows local users to obtain sensitive information in opportunistic circumstances by leveraging the presence of file content after a fail…
|
CWE-200
Information Exposure
|
CVE-2013-5440
|
2024-11-21 10:57 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286710
|
- |
|
ibm
|
rational_clearcase
|
Unspecified vulnerability in IBM Rational ClearCase through 7.1.2.12, 8.0.0.x before 8.0.0.9, and 8.0.1.x before 8.0.1.2 allows local users to gain privileges via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5416
|
2024-11-21 10:57 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
