| Page(s) : 1 ... 247 248 249 250 251 252 253 254 255 256 [257] 258 259 260 261 262 263 264 265 266 267 ... | Result(s) : 8825 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2013-05-31 | CVE-2013-3720 | cve | Cross-site scripting (XSS) vulnerability in widget_remove.php in the Feedweb plugin before 1.9 for WordPress allows remote authenticated administrators to inject arbitrary web s... |
| 3.5 | 2013-05-27 | CVE-2013-2957 | cve | Cross-site scripting (XSS) vulnerability in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite 6.x, 7.x, and 9.x before 9.1.0.3 allows remote authenticated users to in... |
| 3.5 | 2013-05-27 | CVE-2013-2955 | cve | Cross-site scripting (XSS) vulnerability in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite 6.x, 7.x, and 9.x before 9.1.0.3 allows remote authenticated users to in... |
| 2.1 | 2013-05-22 | CVE-2013-0941 | cve | EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6... |
| 2.1 | 2013-05-21 | CVE-2013-2006 | cve | OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obta... |
| 2.1 | 2013-05-21 | CVE-2013-1977 | cve | OpenStack devstack uses world-readable permissions for keystone.conf, which allows local users to obtain sensitive information such as the LDAP password and admin_token secret b... |
| 3.5 | 2013-05-15 | CVE-2013-1244 | cve | Cross-site scripting (XSS) vulnerability in the portal module in Cisco WebEx Social allows remote authenticated users to inject arbitrary web script or HTML via a javascript: UR... |
| 1.9 | 2013-05-13 | CVE-2013-1952 | cve | Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries... |
| 2.1 | 2013-05-13 | CVE-2013-1940 | cve | X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate ... |
| 3.3 | 2013-05-13 | CVE-2013-1922 | cve | qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the ... |
| 1.9 | 2013-05-13 | CVE-2013-1917 | cve | Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a ... |
| 2.6 | 2013-05-13 | CVE-2013-1897 | cve | The do_search function in ldap/servers/slapd/search.c in 389 Directory Server 1.2.x before 1.2.11.20 and 1.3.x before 1.3.0.5 does not properly restrict access to entries when t... |
| 3.5 | 2013-05-10 | CVE-2013-0578 | cve | The Sterling Order Management APIs in IBM Sterling Multi-Channel Fulfillment Solution 8.0 before HF128 and IBM Sterling Selling and Fulfillment Foundation 8.5 before HF93, 9.0 b... |
| 3.5 | 2013-05-09 | CVE-2013-1611 | cve | Multiple cross-site scripting (XSS) vulnerabilities in administrative-interface pages in the management console in Symantec Brightmail Gateway 9.5.x allow remote authenticated u... |
| 3.5 | 2013-05-08 | CVE-2013-3503 | cve | The Profile Importer feature in monarch.cgi in the MONARCH component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to read arbitrary files via an XML ... |
| 3.7 | 2013-05-03 | CVE-2013-1959 | cve | kernel/user_namespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uid_map and gid_map files, which allows local users to gain pr... |
| 3.5 | 2013-05-03 | CVE-2013-0944 | cve | The web-based file-restore interface in EMC Avamar Server before 6.1.0 allows remote authenticated users to read arbitrary files via a crafted URL. |
| 3.5 | 2013-05-02 | CVE-2013-0535 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allow remote authenticated users to inject arbitrary we... |
| 2.1 | 2013-05-02 | CVE-2013-1845 | cve | The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (memory consu... |
| 3.5 | 2013-04-27 | CVE-2013-0553 | cve | The client implementation in IBM Sametime 8.5.1 through 8.5.2.1, as used in Sametime Connect client, Sametime Advanced Connect client, Sametime Advanced Web client, and other pr... |
| Page(s) : 1 ... 247 248 249 250 251 252 253 254 255 256 [257] 258 259 260 261 262 263 264 265 266 267 ... | Result(s) : 8825 |
