|
293301
|
- |
|
redhat
|
openshift
openshift_origin
|
rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain …
|
CWE-310
Cryptographic Issues
|
CVE-2012-5658
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293302
|
- |
|
roundcube
|
webmail
|
Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 0.8.5 allows remote attackers to inject arbitrary web script or HTML via a (1) data:text or (2) vbscript link.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6121
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293303
|
- |
|
redhat
|
openshift_origin
openshift
|
Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks…
|
CWE-20
Improper Input Validation
|
CVE-2012-5647
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293304
|
- |
|
redhat
|
openshift_origin
openshift
|
node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a crafted uuid in the PATH_INFO.
|
CWE-20
Improper Input Validation
|
CVE-2012-5646
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293305
|
- |
|
infradead
|
openconnect
|
Multiple stack-based buffer overflows in http.c in OpenConnect before 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6128
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293306
|
- |
|
qt
canonical
opensuse
|
qt
ubuntu_linux
opensuse
|
The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory fro…
|
CWE-310
Cryptographic Issues
|
CVE-2012-6093
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293307
|
- |
|
bigantsoft
|
bigant_im_message_server
|
Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6275
|
2024-11-21 10:45 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293308
|
- |
|
bigantsoft
|
bigant_im_message_server
|
BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2012-6274
|
2024-11-21 10:45 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293309
|
- |
|
bigantsoft
|
bigant_im_message_server
|
SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request.
|
CWE-89
SQL Injection
|
CVE-2012-6273
|
2024-11-21 10:45 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293310
|
- |
|
ibm
|
websphere_message_broker
|
IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2, when the Parse Query Strings option is enabled on an HTTPInput node, allows remote attackers to cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5953
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
