|
259821
|
- |
|
cisco
|
nx-os
|
Cisco NX-OS allows local users to gain privileges, and read or modify arbitrary files, via the sed (1) r and (2) w commands, aka Bug IDs CSCts56559, CSCts56565, CSCts56570, and CSCts56574.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4121
|
2013-10-16 20:26 |
2013-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259822
|
- |
|
real-estate-php-script
|
real_estate_php_script
|
SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote attackers to execute arbitrary SQL commands via the listingid parameter.
|
CWE-89
SQL Injection
|
CVE-2013-5931
|
2013-10-16 03:03 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259823
|
- |
|
knowledgeview
|
knowledgeview_editorial_and_management_application
|
Cross-site scripting (XSS) vulnerability in the KnowledgeView Editorial and Management application allows remote attackers to inject arbitrary web script or HTML via the username parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3616
|
2013-10-16 02:56 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259824
|
- |
|
cisco
|
firewall_services_module_software
|
The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(25) and 4.x before 4.1(13), when multiple-context mode is enabled, allows local users to read or mo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5506
|
2013-10-16 02:47 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259825
|
- |
|
tenable
|
securitycenter
|
Cross-site scripting (XSS) vulnerability in devform.php in Tenable SecurityCenter 4.6 through 4.7 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5911
|
2013-10-16 02:04 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259826
|
- |
|
alstom
|
e-terracontrol
|
Alstom e-terracontrol 3.5, 3.6, and 3.7 allows remote attackers to cause a denial of service (infinite loop) via crafted DNP3 packets.
|
CWE-20
Improper Input Validation
|
CVE-2013-2787
|
2013-10-16 01:55 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259827
|
- |
|
cisco
|
unified_computing_system
|
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges and execute arbitrary operating-system commands via crafted parameters to a file-relate…
|
CWE-78
OS Command
|
CVE-2012-4108
|
2013-10-16 01:51 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259828
|
- |
|
invensys
|
wonderware_intouch
|
Invensys Wonderware InTouch HMI 2012 R2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4709
|
2013-10-16 01:41 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259829
|
- |
|
invensys
|
wonderware_intouch
|
AV:L per http://ics-cert.us-cert.gov/advisories/ICSA-13-276-01
'This vulnerability is not exploitable remotely'
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4709
|
2013-10-16 01:41 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259830
|
- |
|
mostgear
|
easy_lan_folder_share
|
Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in the (1) r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6079
|
2013-10-16 01:38 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
