|
290681
|
- |
|
all_video_gallery_plugin_project
|
all_video_gallery_plugin
|
Unspecified vulnerability in the All Video Gallery (all-video-gallery) plugin before 1.2.0 for WordPress has unspecified impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-6653
|
2024-11-21 10:46 |
2014-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290682
|
- |
|
vitamin_plugin_project
|
vitamin
|
Multiple directory traversal vulnerabilities in the Vitamin plugin before 1.1.0 for WordPress allow remote attackers to access arbitrary files via a .. (dot dot) in the path parameter to (1) add_head…
|
CWE-22
Path Traversal
|
CVE-2012-6651
|
2024-11-21 10:46 |
2014-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290683
|
- |
|
axway
|
email_firewall
secure_messenger
|
Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, provides different responses to authentication requests depending on whether the user exists, which allows remote…
|
CWE-287
Improper Authentication
|
CVE-2012-6452
|
2024-11-21 10:46 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290684
|
- |
|
linux
|
linux_kernel
|
The futex_wait_requeue_pi function in kernel/futex.c in the Linux kernel before 3.5.1 does not ensure that calls have two different futex addresses, which allows local users to cause a denial of serv…
|
CWE-20
Improper Input Validation
|
CVE-2012-6647
|
2024-11-21 10:46 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290685
|
- |
|
gdm-guest-session_project
canonical
|
gdm-guest-session
ubuntu_linux
|
gdm/guest-session-cleanup.sh in gdm-guest-session 0.24 and earlier, as used in Ubuntu Linux 10.04 LTS, 10.10, and 11.04, allows local users to delete arbitrary files via a space in the name of a file…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6648
|
2024-11-21 10:46 |
2014-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290686
|
- |
|
atlassian
|
confluence_server
|
Cross-site request forgery (CSRF) vulnerability in logout.action in Atlassian Confluence 3.4.6 allows remote attackers to hijack the authentication of administrators for requests that logout the user…
|
CWE-352
Origin Validation Error
|
CVE-2012-6342
|
2024-11-21 10:46 |
2014-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290687
|
- |
|
theforeman
|
foreman
|
The external node classifier (ENC) API in Foreman before 1.1 allows remote attackers to obtain the hashed root password via an API request.
|
CWE-200
Information Exposure
|
CVE-2013-0174
|
2024-11-21 10:46 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290688
|
- |
|
theforeman
|
foreman
|
Foreman before 1.1 uses a salt of "foreman" to hash root passwords, which makes it easier for attackers to guess the password via a brute force attack.
|
CWE-310
Cryptographic Issues
|
CVE-2013-0173
|
2024-11-21 10:46 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290689
|
- |
|
theforeman
|
foreman
|
Foreman before 1.1 allows remote attackers to execute arbitrary code via a crafted YAML object to the (1) fact or (2) report import API.
|
CWE-94
Code Injection
|
CVE-2013-0171
|
2024-11-21 10:46 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290690
|
- |
|
f-secure
|
anti-virus
psb_workstation_security
safe_anywhere
|
F-Secure Anti-Virus, Safe Anywhere, and PSB Workstation Security before 11500 for Mac OS X allows local users to disable the Mac OS X firewall via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2012-6646
|
2024-11-21 10:46 |
2014-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
