|
286651
|
- |
|
raoul_proenca
|
gnew
|
Multiple cross-site scripting (XSS) vulnerabilities in Gnew 2013.1 allow remote attackers to inject arbitrary web script or HTML via the gnew_template parameter to (1) users/profile.php, (2) articles…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7368
|
2024-11-21 11:00 |
2014-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286652
|
- |
|
sap
|
enterprise_portal
|
SAP Enterprise Portal does not properly restrict access to the Federation configuration pages, which allows remote attackers to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7367
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286653
|
- |
|
sap
|
software_deployment_manager
|
The SAP Software Deployment Manager (SDM), in certain unspecified conditions, allows remote attackers to cause a denial of service via vectors related to failed authentications.
|
CWE-287
Improper Authentication
|
CVE-2013-7366
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286654
|
- |
|
sap
|
enterprise_portal
|
Cross-site scripting (XSS) vulnerability in SAP Enterprise Portal allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7365
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286655
|
- |
|
sap
|
netweaver
|
An unspecified J2EE core service in the J2EE Engine in SAP NetWeaver does not properly restrict access, which allows remote attackers to read and write to arbitrary files via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7364
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286656
|
- |
|
sap
|
solution_manager
|
Unspecified vulnerability in the Diagnostics (SMD) agent in SAP Solution Manager allows remote attackers to obtain sensitive information, modify the configuration of applications, and install or remo…
|
NVD-CWE-noinfo
|
CVE-2013-7363
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286657
|
- |
|
sap
|
ccms_agent
|
An unspecified RFC function in SAP CCMS Agent allows remote attackers to execute arbitrary commands via unknown vectors.
|
CWE-94
Code Injection
|
CVE-2013-7362
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286658
|
- |
|
sap
|
cm_services
cms_services
|
Directory traversal vulnerability in SAP CMS and CM Services allows attackers to upload arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2013-7361
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286659
|
- |
|
sap
|
adminadapter
|
Unspecified vulnerability in SAP adminadapter allows remote attackers to read or write to arbitrary files via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-7360
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286660
|
- |
|
sap
|
mobile_infrastructure
|
Unspecified vulnerability in SAP Mobile Infrastructure allows remote attackers to obtain sensitive port information via unknown vectors, related to an "internal port scanning" issue.
|
NVD-CWE-noinfo
|
CVE-2013-7359
|
2024-11-21 11:00 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
