|
295171
|
- |
|
squid-cache
|
squid
|
Squid 3.1.9 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reprod…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2213
|
2024-11-21 10:38 |
2012-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295172
|
- |
|
mcafee
|
web_gateway
|
McAfee Web Gateway 7.0 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might no…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2212
|
2024-11-21 10:38 |
2012-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295173
|
- |
|
openssl
|
openssl
|
Multiple integer signedness errors in crypto/buffer/buffer.c in OpenSSL 0.9.8v allow remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly…
|
CWE-189
Numeric Errors
|
CVE-2012-2131
|
2024-11-21 10:38 |
2012-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295174
|
- |
|
teampass
|
teampass
|
Cross-site scripting (XSS) vulnerability in sources/users.queries.php in TeamPass before 2.1.6 allows remote authenticated users to inject arbitrary web script or HTML via the login parameter in an a…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2234
|
2024-11-21 10:38 |
2012-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295175
|
- |
|
owncloud
|
owncloud
|
Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the r…
|
CWE-20
Improper Input Validation
|
CVE-2012-2270
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295176
|
- |
|
owncloud
|
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) an arbitrary field to apps/contacts/ajax/addcard.php…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2269
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295177
|
- |
|
ryan_walberg
|
php_gift_registry
|
SQL injection vulnerability in users.php in PHP Gift Registry 1.5.5 allows remote authenticated users to execute arbitrary SQL commands via the userid parameter in an edit action.
|
CWE-89
SQL Injection
|
CVE-2012-2236
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295178
|
- |
|
comodo
|
comodo_internet_security
|
Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service (system crash) via a crafted 32-bit Portable Executable (PE) file with a kernel Image…
|
CWE-94
Code Injection
|
CVE-2012-2273
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295179
|
- |
|
openssl
redhat
|
openssl
|
The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2110
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295180
|
- |
|
hp
|
system_management_homepage
|
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows local users to modify data or obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-1993
|
2024-11-21 10:38 |
2012-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
