|
259051
|
- |
|
opentext
|
opentext\/ixos_ecm_for_sap_netweaver
|
Unspecified vulnerability in OpenText/IXOS ECM for SAP NetWeaver allows remote attackers to execute arbitrary ABAP code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-3243
|
2013-11-23 04:53 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259052
|
- |
|
hp
|
2620-24-poe\+_switch
|
Cross-site request forgery (CSRF) vulnerability in html/json.html on HP 2620 switches allows remote attackers to hijack the authentication of administrators for requests that change an administrative…
|
CWE-352
Origin Validation Error
|
CVE-2013-6852
|
2013-11-23 04:03 |
2013-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259053
|
- |
|
cisco
|
ios_xe
|
Cisco IOS XE 3.8S(.2) and earlier does not properly use a DHCP pool during assignment of an IP address, which allows remote authenticated users to cause a denial of service (device reload) via an AAA…
|
CWE-399
Resource Management Errors
|
CVE-2013-6692
|
2013-11-23 03:56 |
2013-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259054
|
- |
|
catapultsoftware
ge
|
catapult_dnp3_i\/o_driver
intelligent_platforms_proficy_dnp3_i\/o_driver
intelligent_platforms_proficy_hmi\/scada_cimplicity
intelligent_platforms_proficy_hmi\/scada_ifix
|
The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent…
|
CWE-20
Improper Input Validation
|
CVE-2013-2823
|
2013-11-22 22:38 |
2013-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259055
|
- |
|
catapultsoftware
ge
|
catapult_dnp3_i\/o_driver
intelligent_platforms_proficy_dnp3_i\/o_driver
intelligent_platforms_proficy_hmi\/scada_cimplicity
intelligent_platforms_proficy_hmi\/scada_ifix
|
The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent…
|
CWE-20
Improper Input Validation
|
CVE-2013-2811
|
2013-11-22 22:35 |
2013-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259056
|
- |
|
iodata
|
rockdisk_firmware
rockdisk
|
Cross-site scripting (XSS) vulnerability in I-O DATA DEVICE RockDisk with firmware before 1.05e1-2.0.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4713
|
2013-11-22 04:30 |
2013-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259057
|
- |
|
cisco
|
ios
|
The IKEv2 implementation in Cisco IOS, when AES-GCM or AES-GMAC is used, allows remote attackers to bypass certain IPsec anti-replay features via IPsec tunnel traffic, aka Bug ID CSCuj47795.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5548
|
2013-11-22 04:29 |
2013-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259058
|
- |
|
vbulletin
|
vbulletin
|
The install/upgrade.php scripts in vBulletin 4.1 and 5 allow remote attackers to create administrative accounts via the customerid, htmldata[password], htmldata[confirmpassword], and htmldata[email] …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6129
|
2013-11-22 04:20 |
2013-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259059
|
- |
|
cisco
|
unified_communications_manager
|
Cisco Unified Communications Manager (aka CUCM or Unified CM) allows remote attackers to cause a denial of service (service restart) via a crafted SIP message, aka Bug ID CSCub54349.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5555
|
2013-11-22 04:19 |
2013-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259060
|
- |
|
linksalpha
|
social_sharing_toolkit_plugin
|
Cross-site request forgery (CSRF) vulnerability in the Social Sharing Toolkit plugin 2.1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that manip…
|
CWE-352
Origin Validation Error
|
CVE-2013-2701
|
2013-11-22 04:09 |
2013-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
