|
260791
|
- |
|
emc
|
networker
|
The nsrpush process in the client in EMC NetWorker before 7.6.5.3 and 8.x before 8.0.1.4 sets weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0940
|
2013-05-3 20:57 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260792
|
- |
|
emc
|
avamar
|
The web-based file-restore interface in EMC Avamar Server before 6.1.0 allows remote authenticated users to read arbitrary files via a crafted URL.
|
CWE-200
Information Exposure
|
CVE-2013-0944
|
2013-05-3 20:57 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260793
|
- |
|
cisco
|
webex_meetings_server
webex_node_for_mcs
|
The HTTP implementation in Cisco WebEx Node for MCS and WebEx Meetings Server allows remote attackers to read cache files via a crafted request, aka Bug IDs CSCue36664 and CSCue36629.
|
CWE-200
CWE-20
Information Exposure
Improper Input Validation
|
CVE-2013-1231
|
2013-05-3 20:57 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260794
|
- |
|
cisco
|
ios_xr
|
The SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (process restart) via crafted SNMP packets, aka Bug ID CSCue69472.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1234
|
2013-05-3 20:57 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260795
|
- |
|
joomla
|
joomla\!
|
Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and delete the private messages of arbitrary users via unspecified vecto…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3056
|
2013-05-3 20:57 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260796
|
- |
|
joomla
|
joomla\!
|
Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote authenticated users to bypass intended privilege requirements and list the privileges of arbitrary users via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3057
|
2013-05-3 20:57 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260797
|
- |
|
joomla
|
joomla\!
|
Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3058
|
2013-05-3 20:57 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260798
|
- |
|
ibm
|
tivoli_federated_identity_manager
tivoli_federated_identity_manager_business_gateway
|
Cross-site scripting (XSS) vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.12, 6.2.1 before 6.2.1.5, and 6.2.2 before 6.2.2.4 and Tivoli Federated Identity Manager Bu…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0582
|
2013-05-3 13:00 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260799
|
- |
|
zend
|
zend_framework
|
The (1) Zend_Feed_Rss and (2) Zend_Feed_Atom classes in Zend_Feed in Zend Framework 1.11.x before 1.11.15 and 1.12.x before 1.12.1 allow remote attackers to read arbitrary files, send HTTP requests t…
|
CWE-200
Information Exposure
|
CVE-2012-5657
|
2013-05-3 13:00 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260800
|
- |
|
gnu
|
glibc
|
The svc_run function in the RPC implementation in glibc before 2.15 allows remote attackers to cause a denial of service (CPU consumption) via a large number of RPC connections.
|
CWE-399
Resource Management Errors
|
CVE-2011-4609
|
2013-05-3 13:00 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
