|
293271
|
- |
|
sharetronix
|
sharetronix
|
Sharetronix 3.1.1.3, 3.1.1, and earlier does not properly restrict access to unspecified AJAX functionality, which allows remote attackers to bypass authentication via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5356
|
2024-11-21 10:57 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293272
|
- |
|
sharetronix
|
sharetronix
|
Unrestricted file upload vulnerability in system/controllers/ajax/attachments.php in Sharetronix 3.1.1.3, 3.1.1, and earlier allows remote attackers to execute arbitrary code by uploading a file with…
|
NVD-CWE-Other
|
CVE-2013-5353
|
2024-11-21 10:57 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293273
|
- |
|
sharetronix
|
sharetronix
|
Sharetronix 3.1.1.3, 3.1.1, and earlier allows remote attackers to execute arbitrary PHP code via the (1) activities_text parameter to services/activities/set or (2) comments_text parameter to servic…
|
CWE-94
Code Injection
|
CVE-2013-5352
|
2024-11-21 10:57 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293274
|
- |
|
ibm
|
maximo_asset_management
smartcloud_control_desk
|
IBM Maximo Asset Management 7.5.x before 7.5.0.3 IFIX027, 7.5.0.4 before IFIX011, and 7.5.0.5 before IFIX006 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote aut…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5464
|
2024-11-21 10:57 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293275
|
- |
|
ibm
|
maximo_asset_management
smartcloud_control_desk
|
IBM Maximo Asset Management 7.x before 7.5.0.6 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5460
|
2024-11-21 10:57 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293276
|
- |
|
ibm
|
maximo_asset_management
change_and_configuration_management_database
maximo_service_desk
tivoli_service_request_manager
tivoli_it_asset_management_for_it
tivoli_asset_management_for_it…
|
IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837, 7.1.1.11 before IFIX.20140323-0749, 7.1.1.12 before IFIX.20140321-1336, 7.5.x before 7.5.0.3 IFIX027, and 7.5.0.4 before IFIX011; S…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5465
|
2024-11-21 10:57 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293277
|
- |
|
xiaowen_huang
|
yingzhi_python_programming_language
|
Directory traversal vulnerability in the FTP server in YingZhi Python Programming Language for iOS 1.9 allows remote attackers to read and possibly write arbitrary files via a .. (dot dot) in the def…
|
CWE-22
Path Traversal
|
CVE-2013-5655
|
2024-11-21 10:57 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293278
|
- |
|
mark_evans
|
fog-dragonfly
|
lib/dragonfly/imagemagickutils.rb in the fog-dragonfly gem 0.8.2 for Ruby allows remote attackers to execute arbitrary commands via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2013-5671
|
2024-11-21 10:57 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293279
|
- |
|
powersoftware
|
winarchiver
|
Buffer overflow in Power Software WinArchiver 3.2 allows remote attackers to execute arbitrary code via a crafted .zip file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5660
|
2024-11-21 10:57 |
2014-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293280
|
- |
|
ibm
|
rhapsody_design_manager
rational_software_architect_design_manager
|
Unspecified vulnerability in IBM Rational Software Architect (RSA) Design Manager and Rational Rhapsody Design Manager 3.x through 3.0.1 and 4.x before 4.0.6 allows remote authenticated users to modi…
|
NVD-CWE-noinfo
|
CVE-2013-5459
|
2024-11-21 10:57 |
2014-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
