|
295761
|
- |
|
siemens
|
comos
|
Siemens COMOS before 9.1 Patch 413, 9.2 before Update 03 Patch 023, and 10.0 before Patch 005 allows remote authenticated users to obtain database administrative access via unspecified method calls.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3009
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295762
|
- |
|
tom_braider
|
count_per_day
|
Multiple cross-site scripting (XSS) vulnerabilities in userperspan.php in the Count Per Day module before 3.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) p…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3434
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295763
|
- |
|
zabbix
|
zabbix
|
SQL injection vulnerability in frontends/php/popup_bitem.php in Zabbix 1.8.15rc1 and earlier, and 2.x before 2.0.2rc1, allows remote attackers to execute arbitrary SQL commands via the itemid paramet…
|
CWE-89
SQL Injection
|
CVE-2012-3435
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295764
|
- |
|
canonical
libpng
opensuse
redhat
debian
|
ubuntu_linux
libpng
opensuse
debian_linux
|
The png_push_read_zTXt function in pngpread.c in libpng 1.0.x before 1.0.58, 1.2.x before 1.2.48, 1.4.x before 1.4.10, and 1.5.x before 1.5.10 allows remote attackers to cause a denial of service (ou…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3425
|
2024-11-21 10:40 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295765
|
- |
|
jan_kara
|
linux_diskquota
|
The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3417
|
2024-11-21 10:40 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295766
|
- |
|
libtiff
|
libtiff
|
The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 and earlier does not properly initialize the T2P context struct pointer in certain error conditions, which allows conte…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3401
|
2024-11-21 10:40 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295767
|
- |
|
redhat
|
certificate_system
dogtag_certificate_system
|
Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3367
|
2024-11-21 10:40 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295768
|
- |
|
ushahidi
|
ushahidi_platform
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) application/views/admin/layout.php and (2) themes/default/views/header.php in the Ushahidi Platform before 2.5 allow remote authenticated us…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3476
|
2024-11-21 10:40 |
2012-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295769
|
- |
|
ushahidi
|
ushahidi_platform
|
The installer in the Ushahidi Platform before 2.5 omits certain calls to the exit function, which allows remote attackers to obtain administrative privileges via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2012-3475
|
2024-11-21 10:40 |
2012-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295770
|
- |
|
ushahidi
|
ushahidi_platform
|
The comments API in application/libraries/api/MY_Comments_Api_Object.php in the Ushahidi Platform before 2.5 allows remote attackers to obtain sensitive information about the e-mail address, IP addre…
|
CWE-200
Information Exposure
|
CVE-2012-3474
|
2024-11-21 10:40 |
2012-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
