261011
|
- |
|
views_project
|
views
|
Multiple cross-site scripting (XSS) vulnerabilities in the Views module 7.x-3.x before 7.x-3.6 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1887
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261012
|
- |
|
symantec
|
enterprise_vault_for_file_system_archiving
|
Multiple unquoted Windows search path vulnerabilities in the (1) File Collector and (2) File PlaceHolder services in Symantec Enterprise Vault (EV) for File System Archiving before 9.0.4 and 10.x bef…
|
NVD-CWE-Other
|
CVE-2013-1609
|
2013-03-27 22:25 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261013
|
- |
|
cisco
|
ios_xr
|
The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to cause a denial of service (process restart) via crafted TE packets, aka Bug ID CSCue04000.
|
CWE-20
Improper Input Validation
|
CVE-2013-1162
|
2013-03-27 01:11 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261014
|
- |
|
cisco
|
jabber_im
|
The XML parser in the Cisco Jabber IM application for Android allows remote authenticated users to cause a denial of service (blocked connection) by leveraging an entry on a Buddy list and sending a …
|
CWE-20
Improper Input Validation
|
CVE-2013-1161
|
2013-03-27 01:09 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261015
|
- |
|
symantec
|
netbackup_appliance
|
Directory traversal vulnerability in the Management Console on the Symantec NetBackup (NBU) appliance 2.0.x allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2013-1608
|
2013-03-26 23:07 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261016
|
- |
|
polycom
|
hdx_system_software
|
Cross-site scripting (XSS) vulnerability in the web management interface on Polycom HDX Video End Points with UC APL software before 2.7.1.1_J, and commercial software before 3.0.5, allows remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4970
|
2013-03-26 12:39 |
2013-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261017
|
- |
|
apple
|
iphone_os
|
Mail in Apple iOS before 6 does not properly implement the Data Protection feature for e-mail attachments, which allows physically proximate attackers to bypass an intended passcode requirement via u…
|
NVD-CWE-Other
|
CVE-2012-3731
|
2013-03-26 12:37 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261018
|
- |
|
apple
|
iphone_os
|
The Passcode Lock implementation in Apple iOS before 6 does not properly restrict photo viewing, which allows physically proximate attackers to view arbitrary stored photos by spoofing a time value.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3737
|
2013-03-26 12:37 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261019
|
- |
|
apple
|
iphone_os
|
The Emergency Dialer screen in the Passcode Lock implementation in Apple iOS before 6 does not properly limit the dialing methods, which allows physically proximate attackers to bypass intended acces…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3738
|
2013-03-26 12:37 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261020
|
- |
|
cisco
|
identity_services_engine_software identity_services_engine
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the ISE Administrator user interface (aka the Apache Tomcat interface) on Cisco Identity Services Engine (ISE) 3300 series appliances bef…
|
CWE-352
Origin Validation Error
|
CVE-2012-3908
|
2013-03-26 12:37 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|