|
292171
|
- |
|
ibm
|
sterling_secure_proxy
|
IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 allows remote authenticated users to obtain sensitive Java stac…
|
CWE-20
Improper Input Validation
|
CVE-2013-0520
|
2024-11-21 10:47 |
2013-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292172
|
- |
|
ibm
|
sterling_secure_proxy
|
IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 provides web-server version data in (1) an unspecified page tit…
|
CWE-200
Information Exposure
|
CVE-2013-0519
|
2024-11-21 10:47 |
2013-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292173
|
- |
|
ibm
|
sterling_secure_proxy
|
IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 does not refuse to be rendered in different-origin frames, whic…
|
CWE-20
Improper Input Validation
|
CVE-2013-0518
|
2024-11-21 10:47 |
2013-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292174
|
- |
|
ibm
|
websphere_datapower_xc10_appliance_firmware
websphere_datapower_xc10_appliance
|
Unspecified vulnerability on IBM WebSphere DataPower XC10 Appliance devices 2.0 and 2.1 through 2.1 FP3 allows remote attackers to bypass authentication and perform administrative actions via unknown…
|
NVD-CWE-noinfo
|
CVE-2013-0600
|
2024-11-21 10:47 |
2013-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292175
|
- |
|
ibm
|
tivoli_federated_identity_manager
tivoli_federated_identity_manager_business_gateway
|
Cross-site scripting (XSS) vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.12, 6.2.1 before 6.2.1.5, and 6.2.2 before 6.2.2.4 and Tivoli Federated Identity Manager Bu…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0582
|
2024-11-21 10:47 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292176
|
- |
|
ibm
|
classic_meeting_server
lotus_sametime
|
Multiple cross-site scripting (XSS) vulnerabilities in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allow remote authenticated users to inject arbitrary web script or HTML via u…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0535
|
2024-11-21 10:47 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292177
|
- |
|
djangoproject
canonical
|
django
ubuntu_linux
|
The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of ser…
|
CWE-189
Numeric Errors
|
CVE-2013-0306
|
2024-11-21 10:47 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292178
|
- |
|
djangoproject
canonical
|
django
ubuntu_linux
|
The administrative interface for Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 does not check permissions for the history view, which allows remote authenticated a…
|
CWE-200
Information Exposure
|
CVE-2013-0305
|
2024-11-21 10:47 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292179
|
- |
|
matrikonopc
|
matrikonopc_a\&e_historian
|
Directory traversal vulnerability in the web interface in the Health Monitor service in MatrikonOPC A&E Historian 1.0.0.0 allows remote attackers to read and delete arbitrary files via a crafted URL.
|
CWE-22
Path Traversal
|
CVE-2013-0673
|
2024-11-21 10:47 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292180
|
- |
|
matrikonopc
|
matrikonopc_security_gateway
|
The configuration utility in MatrikonOPC Security Gateway 1.0 allows remote attackers to cause a denial of service (unhandled exception and application crash) via a TCP RST packet.
|
CWE-399
Resource Management Errors
|
CVE-2013-0666
|
2024-11-21 10:47 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
