|
293471
|
- |
|
askia
|
askiaweb
|
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to inject arbitrary web script or HTML via the (1) Number or (2) UpdatePag…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0124
|
2024-11-21 10:46 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293472
|
- |
|
askia
|
askiaweb
|
Multiple SQL injection vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to execute arbitrary SQL commands via (1) the nHistoryId parameter to WebProd/pages/pgH…
|
CWE-89
SQL Injection
|
CVE-2013-0123
|
2024-11-21 10:46 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293473
|
- |
|
verizon
|
fios_actiontec_mi424wr-gen31_router_firmware
fios_actiontec_mi424wr-gen31_router
|
Multiple cross-site request forgery (CSRF) vulnerabilities in index.cgi on the Verizon FIOS Actiontec MI424WR-GEN3I router with firmware 40.19.36 allow remote attackers to hijack the authentication o…
|
CWE-352
Origin Validation Error
|
CVE-2013-0126
|
2024-11-21 10:46 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293474
|
- |
|
linux
|
linux_kernel
|
The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from k…
|
CWE-200
Information Exposure
|
CVE-2012-6549
|
2024-11-21 10:46 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293475
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux
|
The udf_encode_fh function in fs/udf/namei.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap m…
|
CWE-200
Information Exposure
|
CVE-2012-6548
|
2024-11-21 10:46 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293476
|
- |
|
linux
|
linux_kernel
|
The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack me…
|
CWE-200
Information Exposure
|
CVE-2012-6547
|
2024-11-21 10:46 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293477
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux
|
The ATM implementation in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted applicati…
|
CWE-200
Information Exposure
|
CVE-2012-6546
|
2024-11-21 10:46 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293478
|
- |
|
redhat
linux
|
enterprise_linux
linux_kernel
|
The Bluetooth RFCOMM implementation in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a c…
|
CWE-200
Information Exposure
|
CVE-2012-6545
|
2024-11-21 10:46 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293479
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux
|
The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a cr…
|
CWE-200
Information Exposure
|
CVE-2012-6544
|
2024-11-21 10:46 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293480
|
- |
|
linux
|
linux_kernel
|
The l2tp_ip6_getname function in net/l2tp/l2tp_ip6.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kerne…
|
CWE-200
Information Exposure
|
CVE-2012-6543
|
2024-11-21 10:46 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
