Show filters
340 Total Results
Displaying 321-330 of 340
Sort by:
Attacker Value
Unknown
CVE-2013-2251
Disclosure Date: July 20, 2013 (last updated July 17, 2024)
Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.
0
Attacker Value
Unknown
CVE-2013-3398
Disclosure Date: June 26, 2013 (last updated October 05, 2023)
The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance provides different responses to requests for arbitrary pathnames depending on whether the pathname exists, which allows remote attackers to enumerate directories and files via a series of crafted requests, aka Bug ID CSCuh64574.
0
Attacker Value
Unknown
CVE-2013-3375
Disclosure Date: June 14, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the portal page in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCue23798.
0
Attacker Value
Unknown
CVE-2013-1247
Disclosure Date: May 31, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the wireless configuration module in Cisco Prime Infrastructure allows remote attackers to inject arbitrary web script or HTML via an SSID that is not properly handled during display of the XML windowing table, aka Bug ID CSCuf04356.
0
Attacker Value
Unknown
CVE-2013-1156
Disclosure Date: May 01, 2013 (last updated October 05, 2023)
Directory traversal vulnerability in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to read arbitrary files via a crafted URL, aka Bug ID CSCud51034.
0
Attacker Value
Unknown
CVE-2013-1159
Disclosure Date: May 01, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the Netcool Impact (NCI) web menus in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud56706.
0
Attacker Value
Unknown
CVE-2013-1158
Disclosure Date: May 01, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the IBM Tivoli Monitoring (ITM) help menus in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud54397.
0
Attacker Value
Unknown
CVE-2013-1157
Disclosure Date: May 01, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the IBM Tivoli Monitoring (ITM) Java servlet container in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud51068.
0
Attacker Value
Unknown
CVE-2013-1160
Disclosure Date: May 01, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the OpenView web menus in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud56743.
0
Attacker Value
Unknown
CVE-2013-1196
Disclosure Date: April 29, 2013 (last updated October 05, 2023)
The command-line interface in Cisco Secure Access Control System (ACS), Identity Services Engine Software, Context Directory Agent, Application Networking Manager (ANM), Prime Network Control System, Prime LAN Management Solution (LMS), Prime Collaboration, Unified Provisioning Manager, Network Services Manager, Prime Data Center Network Manager (DCNM), and Quad does not properly validate input, which allows local users to obtain root privileges via unspecified vectors, aka Bug IDs CSCug29384, CSCug13866, CSCug29400, CSCug29406, CSCug29411, CSCug29413, CSCug29416, CSCug29418, CSCug29422, CSCug29425, and CSCug29426, a different issue than CVE-2013-1125.
0
