|
289141
|
- |
|
ibm
|
cognos_express
|
The server in IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows remote attackers to read encrypted credentials via unspecified vectors.
|
CWE-310
Cryptographic Issues
|
CVE-2013-5444
|
2024-11-21 10:57 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289142
|
- |
|
ibm
|
cognos_express
|
Cross-site request forgery (CSRF) vulnerability in IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows remote attackers to hijack the authenticat…
|
CWE-352
Origin Validation Error
|
CVE-2013-5443
|
2024-11-21 10:57 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289143
|
- |
|
ibm
|
websphere_mq_internet_pass_thru
|
The command-port listener in IBM WebSphere MQ Internet Pass-Thru (MQIPT) 2.x before 2.1.0.1 allows remote attackers to cause a denial of service (remote-administration outage) via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5401
|
2024-11-21 10:57 |
2014-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289144
|
- |
|
apple
|
iphone_os
|
Backup in Apple iOS before 7.1 does not properly restrict symlinks, which allows remote attackers to overwrite files during a restore operation via crafted backup data.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5133
|
2024-11-21 10:57 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289145
|
- |
|
zldnn
|
dnnarticle
|
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid…
|
CWE-89
SQL Injection
|
CVE-2013-5117
|
2024-11-21 10:57 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289146
|
- |
|
raoul_proenca
|
gnew
|
Directory traversal vulnerability in users/login.php in Gnew 2013.1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the gnew_language cookie.
|
CWE-22
Path Traversal
|
CVE-2013-5639
|
2024-11-21 10:57 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289147
|
- |
|
ibm
|
algo_one
|
IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, does not encrypt…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5468
|
2024-11-21 10:57 |
2014-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289148
|
- |
|
irfanview
|
irfanview
|
Heap-based buffer overflow in IrfanView before 4.37 allows remote attackers to execute arbitrary code via the LZW code stream in a GIF file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5351
|
2024-11-21 10:57 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289149
|
- |
|
ibm
|
platform_symphony
|
An unspecified servlet in IBM Platform Symphony Developer Edition (DE) 5.2 and 6.1.x through 6.1.1 has hardcoded credentials, which allows remote attackers to bypass authentication and obtain "local …
|
CWE-255
Credentials Management
|
CVE-2013-5400
|
2024-11-21 10:57 |
2014-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289150
|
- |
|
ibm
|
infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management_collaboration_server
|
Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere Master Data Management - Collaborative Edition 10.x before 10.1 FP8 through 11.0 and InfoSphere Master Data Management Server for Pro…
|
CWE-352
Origin Validation Error
|
CVE-2013-5427
|
2024-11-21 10:57 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
