|
260211
|
- |
|
process-one
|
ejabberd
|
The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack.
|
CWE-310
Cryptographic Issues
|
CVE-2013-6169
|
2013-10-19 02:46 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260212
|
- |
|
cisco
|
unified_meetingplace
unified_meetingplace_web_conferencing
|
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified MeetingPlace Solution, as used in Unified MeetingPlace Web Conferencing and Unified MeetingPlace, allows remote a…
|
CWE-352
Origin Validation Error
|
CVE-2013-5494
|
2013-10-18 22:51 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260213
|
- |
|
cisco
|
unified_communications_domain_manager
|
SQL injection vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuh…
|
CWE-89
SQL Injection
|
CVE-2013-5517
|
2013-10-18 04:27 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260214
|
- |
|
cisco
|
wireless_lan_controller
|
Cross-site scripting (XSS) vulnerability in the management interface on Cisco Wireless LAN Controller (WLC) devices allows remote attackers to inject arbitrary web script or HTML via a crafted URL, a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5519
|
2013-10-18 04:19 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260215
|
- |
|
cisco
|
video_surveillance_4000_ip_camera
video_surveillance_4300e_ip_camera
video_surveillance_4500e_ip_camera
|
The analytics page on Cisco Video Surveillance 4000 IP cameras has hardcoded credentials, which allows remote attackers to watch the video feed by leveraging knowledge of the password, aka Bug IDs CS…
|
CWE-255
Credentials Management
|
CVE-2013-5535
|
2013-10-18 04:09 |
2013-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260216
|
- |
|
emc
|
atmos
|
EMC Atmos before 2.1.4 has a blank password for the PostgreSQL account, which allows remote attackers to obtain sensitive administrative information via a database-server connection.
|
CWE-255
Credentials Management
|
CVE-2013-3279
|
2013-10-18 03:30 |
2013-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260217
|
- |
|
oracle
|
ilearning
|
Unspecified vulnerability in the Oracle iLearning component in Oracle iLearning 5.2.1 and 6.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors relate…
|
NVD-CWE-noinfo
|
CVE-2013-5822
|
2013-10-17 23:18 |
2013-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260218
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2 allows remote attackers to affect availability via unknown vectors related to Me…
|
NVD-CWE-noinfo
|
CVE-2013-5816
|
2013-10-17 23:03 |
2013-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260219
|
- |
|
oracle
|
industry_applications
|
Unspecified vulnerability in the Oracle Health Sciences InForm component in Oracle Industry Applications 4.5 SP3, 4.5 SP3a-k, 4.6 SP0, 4.6 SP0a-c, 4.6 SP1, 4.6 SP1a-c, 4.6 SP2, 4.6 SP2a-c, 5.0 SP0, 5…
|
NVD-CWE-noinfo
|
CVE-2013-5811
|
2013-10-17 22:50 |
2013-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260220
|
- |
|
oracle
|
supply_chain_products_suite
|
Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.2 allows remote attackers to affect integrity via unknown vectors related to Security.
|
NVD-CWE-noinfo
|
CVE-2013-5799
|
2013-10-17 04:15 |
2013-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
