|
288881
|
- |
|
symantec
|
web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
|
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 has an incorrect sudoers file, which allows local users to bypass intended access restrictions via a command.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4672
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288882
|
- |
|
symantec
|
web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
|
Cross-site request forgery (CSRF) vulnerability in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allows remote authenticated users to hijack the authentication of un…
|
CWE-352
Origin Validation Error
|
CVE-2013-4671
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288883
|
- |
|
symantec
|
web_gateway
web_gateway_appliance_8450
web_gateway_appliance_8490
|
Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allow remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4670
|
2024-11-21 10:56 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288884
|
- |
|
minibb
|
minibb
|
Multiple cross-site scripting (XSS) vulnerabilities in bb_admin.php in MiniBB before 3.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) forum_name, (2) forum_group, (3) f…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5020
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288885
|
- |
|
vector
|
ultra_mini_httpd
|
Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5019
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288886
|
- |
|
symantec
|
encryption_management_server
pgp_universal_server
|
Cross-site scripting (XSS) vulnerability in the Web Email Protection component in Symantec Encryption Management Server (formerly Symantec PGP Universal Server) before 3.3.0 MP2 allows remote authent…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4674
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288887
|
- |
|
westerndigital
|
my_net_n900
my_net_n900c
my_net_n750
|
main_internet.php on the Western Digital My Net N600 and N750 with firmware 1.03.12 and 1.04.16, and the N900 and N900C with firmware 1.05.12, 1.06.18, and 1.06.28, allows remote attackers to discove…
|
CWE-255
Credentials Management
|
CVE-2013-5006
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288888
|
- |
|
hitachi
|
jp1\/it_desktop_management-manager
job_management_partner_1\/it_desktop_management-manager
it_operations_director
|
Multiple unspecified vulnerabilities in Hitachi JP1/IT Desktop Management - Manager 09-50 through 09-50-03, 09-51 through 09-51-05, 10-00 through 10-00-02, and 10-01 through 10-01-02; Hitachi Job Man…
|
NVD-CWE-noinfo
|
CVE-2013-4697
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288889
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via (1) the scale parameter to pm…
|
CWE-89
SQL Injection
|
CVE-2013-5003
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288890
|
- |
|
phpmyadmin
|
phpmyadmin
|
Cross-site scripting (XSS) vulnerability in libraries/schema/Export_Relation_Schema.class.php in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote authenticated users to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5002
|
2024-11-21 10:56 |
2013-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
