|
288151
|
- |
|
hp
|
sitescope
|
Unspecified vulnerability in the loadFileContents function in the SOAP implementation in HP SiteScope 10.1x, 11.1x, and 11.21 allows remote attackers to read arbitrary files or cause a denial of serv…
|
NVD-CWE-noinfo
|
CVE-2013-6207
|
2024-11-21 10:58 |
2014-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288152
|
- |
|
aker
|
secure_mail_gateway
|
Cross-site scripting (XSS) vulnerability in index.php in Aker Secure Mail Gateway 2.5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg_id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6037
|
2024-11-21 10:58 |
2014-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288153
|
- |
|
huawei
|
e355_firmware
e355
|
The Huawei E355 adapter with firmware 21.157.37.01.910 does not require authentication for API pages, which allows remote attackers to change passwords and settings, or obtain sensitive information, …
|
CWE-287
Improper Authentication
|
CVE-2013-6031
|
2024-11-21 10:58 |
2014-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288154
|
- |
|
eng
|
spagobi
|
Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field in the "Short document metadata."
|
CWE-79
Cross-site Scripting
|
CVE-2013-6233
|
2024-11-21 10:58 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288155
|
- |
|
eng
|
spagobi
|
Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6232
|
2024-11-21 10:58 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288156
|
- |
|
ibm
|
enterprise_records
infosphere_enterprise_records
|
IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote…
|
CWE-20
Improper Input Validation
|
CVE-2013-6315
|
2024-11-21 10:58 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288157
|
- |
|
ibm
|
enterprise_records
infosphere_enterprise_records
|
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 allows remote authenticated users to…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6314
|
2024-11-21 10:58 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288158
|
- |
|
ibm
|
algo_risk_application
algo_one
|
Multiple directory traversal vulnerabilities in Algo Risk Application (ARA) 2.4.0.1 through 4.9.1 in IBM Algo One allow remote authenticated users to bypass intended access restrictions via a crafted…
|
CWE-22
Path Traversal
|
CVE-2013-6304
|
2024-11-21 10:58 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288159
|
- |
|
hp
|
security_management_system
|
Unspecified vulnerability in HP Security Management System 3.3.0, 3.5.0 before patch 1, and 3.6.0 before patch 2 allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-6201
|
2024-11-21 10:58 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288160
|
- |
|
ibm
|
algo_one
|
Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and A…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6320
|
2024-11-21 10:58 |
2014-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
