260841
|
- |
|
vmware
|
vcenter_server_appliance
|
VMware vCenter Server 5.1 before Update 1, when anonymous LDAP binding for Active Directory is enabled, allows remote attackers to bypass authentication by providing a valid username in conjunction w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3107
|
2013-05-1 21:00 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260842
|
- |
|
cisco
|
ios_xr
|
Memory leak in the SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (memory consumption and process restart) via crafted SNMP packets, aka Bug ID CSCue31546.
|
CWE-200
Information Exposure
|
CVE-2013-1216
|
2013-05-1 13:00 |
2013-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260843
|
- |
|
cisco
|
intrusion_prevention_system
|
SensorApp in Cisco Intrusion Prevention System (IPS) allows local users to cause a denial of service (Regex hardware job failure and application hang) via a (1) initiate signature upgrade, (2) initia…
|
NVD-CWE-noinfo
|
CVE-2013-1219
|
2013-05-1 13:00 |
2013-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260844
|
- |
|
kelly_d._redding
|
kelredd-pruview
|
kelredd-pruview gem 0.3.8 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename argument to (1) document.rb, (2) video.rb, or (3) video_imag…
|
CWE-78
OS Command
|
CVE-2013-1947
|
2013-05-1 13:00 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260845
|
- |
|
blinkwebeffects
|
social-media-widget
|
Social Media Widget (social-media-widget) plugin 4.0 for WordPress contains an externally introduced modification (Trojan Horse), which allows remote attackers to force the upload of arbitrary files.
|
NVD-CWE-noinfo
|
CVE-2013-1949
|
2013-05-1 13:00 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260846
|
- |
|
crunchify
|
foursquare-checkins
|
Cross-site request forgery (CSRF) vulnerability in the FourSquare Checkins plugin before 1.3 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that in…
|
CWE-352
Origin Validation Error
|
CVE-2013-2709
|
2013-05-1 13:00 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260847
|
- |
|
cisco
|
application_networking_manager context_directory_agent identity_services_engine_software network_services_manager prime_collaboration prime_data_center_network_manager prime_lan_man…
|
The command-line interface in Cisco Secure Access Control System (ACS), Identity Services Engine Software, Context Directory Agent, Application Networking Manager (ANM), Prime Network Control System,…
|
CWE-20
Improper Input Validation
|
CVE-2013-1196
|
2013-04-30 22:26 |
2013-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260848
|
- |
|
cisco
|
nx-os nexus_7000 nexus_7000_10-slot nexus_7000_18-slot nexus_7000_9-slot
|
The Ethernet frame-forwarding implementation in Cisco NX-OS on Nexus 7000 devices allows remote attackers to cause a denial of service (forwarding loop and service outage) via a crafted frame, aka Bu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1226
|
2013-04-29 23:23 |
2013-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260849
|
- |
|
cisco
|
unified_computing_system_software
|
Cross-site scripting (XSS) vulnerability in a Flash component in Cisco Unified Computing System (UCS) Central allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1198
|
2013-04-29 23:17 |
2013-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260850
|
- |
|
cisco
|
unified_communications_domain_manager
|
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, ak…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1227
|
2013-04-29 21:20 |
2013-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|