|
290721
|
- |
|
horde
|
kronolith_h4
|
Multiple cross-site scripting (XSS) vulnerabilities in the (1) tasks and (2) search views in Horde Kronolith H4 before 3.0.17 allow remote attackers to inject arbitrary web script or HTML via unspeci…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6620
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290722
|
- |
|
ffmpeg
|
ffmpeg
|
The av_probe_input_buffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with certain -probesize values, allows remote attackers to cause a denial of service (crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6618
|
2024-11-21 10:46 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290723
|
- |
|
ffmpeg
|
ffmpeg
|
The prepare_sdp_description function in ffserver.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (crash) via vectors related to the rtp format.
|
NVD-CWE-Other
|
CVE-2012-6617
|
2024-11-21 10:46 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290724
|
- |
|
ffmpeg
|
ffmpeg
|
The mov_text_decode_frame function in libavcodec/movtextdec.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via crafted 3GPP TS 26.245 dat…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6616
|
2024-11-21 10:46 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290725
|
- |
|
ffmpeg
|
ffmpeg
|
The ff_ass_split_override_codes function in libavcodec/ass_split.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a subtitle dial…
|
NVD-CWE-Other
|
CVE-2012-6615
|
2024-11-21 10:46 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290726
|
- |
|
apache
|
solr
|
The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in Apache Solr before 4.1 allows remote attackers to have an unspecified impact via XML data containing an external entity declaratio…
|
NVD-CWE-noinfo
|
CVE-2012-6612
|
2024-11-21 10:46 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290727
|
- |
|
djvulibre_project
|
djvulibre
|
DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a…
|
CWE-94
Code Injection
|
CVE-2012-6535
|
2024-11-21 10:46 |
2013-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290728
|
- |
|
elastix
|
elastix
|
Cross-site scripting (XSS) vulnerability in xmlservices/E_book.php in Elastix 2.3.0 allows remote attackers to inject arbitrary web script or HTML via the Page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6608
|
2024-11-21 10:46 |
2013-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290729
|
- |
|
augeas
|
augeas
|
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augsave file in a backup …
|
CWE-22
Path Traversal
|
CVE-2012-6607
|
2024-11-21 10:46 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290730
|
- |
|
microsoft
|
office
|
Microsoft Office 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) file, aka "WPD File Format Memory Corruption Vulnerability."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0082
|
2024-11-21 10:46 |
2013-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
