260911
|
- |
|
nori_gem_project
|
nori_gem
|
The nori gem 2.0.x before 2.0.2, 1.1.x before 1.1.4, and 1.0.x before 1.0.3 for Ruby does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attac…
|
CWE-20
Improper Input Validation
|
CVE-2013-0285
|
2013-04-16 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260912
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 does not properly check authentication when importing Zip files, which allows remote attackers to modify site contents…
|
CWE-287
Improper Authentication
|
CVE-2013-0314
|
2013-04-15 13:00 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260913
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 allows remote attackers to read arbitrary files via a crafted external XML entity in an XML document, aka an XML Entit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0315
|
2013-04-15 13:00 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260914
|
- |
|
cisco
|
firewall_services_module_software
|
The auth-proxy functionality in Cisco Firewall Services Module (FWSM) software 3.1 and 3.2 before 3.2(20.1), 4.0 before 4.0(15.2), and 4.1 before 4.1(5.1) allows remote attackers to cause a denial of…
|
CWE-287
Improper Authentication
|
CVE-2013-1155
|
2013-04-15 13:00 |
2013-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260915
|
- |
|
cisco
|
unified_meetingplace
|
The web server in Cisco Unified MeetingPlace Application Server 7.x before 7.1MR1 Patch 2, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 Patch 1 does not invalidate a session upon a logout action,…
|
NVD-CWE-noinfo
|
CVE-2013-1168
|
2013-04-15 13:00 |
2013-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260916
|
- |
|
cisco
|
unified_meetingplace_web_conferencing_server
|
Cisco Unified MeetingPlace Web Conferencing Server 7.x before 7.1MR1 Patch 2, 8.0 before 8.0MR1 Patch 2, and 8.5 before 8.5MR3 Patch 1, when the Remember Me option is used, does not properly verify c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1169
|
2013-04-15 13:00 |
2013-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260917
|
- |
|
qualcomm motorola
|
msm8960 android atrix_hd razr_hd razr_m
|
The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the …
|
CWE-16
Configuration
|
CVE-2013-3051
|
2013-04-15 13:00 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260918
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
Cross-site request forgery (CSRF) vulnerability in the GateIn Portal component in JBoss Enterprise Portal Platform 5.2.2 and earlier allows remote attackers to hijack the authentication of unspecifie…
|
CWE-352
Origin Validation Error
|
CVE-2012-3532
|
2013-04-15 13:00 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260919
|
- |
|
ge
|
intelligent_platforms_proficy_real-time_information_portal
|
rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6 through 3.5 SP1 allows remote attackers to cause a denial of service (memory corruptio…
|
CWE-20
Improper Input Validation
|
CVE-2012-3010
|
2013-04-13 11:55 |
2012-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260920
|
- |
|
ge
|
intelligent_platforms_proficy_real-time_information_portal
|
rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6 through 3.5 SP1 allows remote attackers to cause a denial of service (memory corruptio…
|
CWE-20
Improper Input Validation
|
CVE-2012-3021
|
2013-04-13 11:55 |
2012-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|