|
295141
|
- |
|
php
|
php
|
sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which al…
|
CWE-20
Improper Input Validation
|
CVE-2012-2336
|
2024-11-21 10:38 |
2012-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295142
|
- |
|
php
|
php
|
php-wrapper.fcgi does not properly handle command-line arguments, which allows remote attackers to bypass a protection mechanism in PHP 5.3.12 and 5.4.2 and execute arbitrary code by leveraging impro…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2335
|
2024-11-21 10:38 |
2012-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295143
|
- |
|
php
|
php
|
Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2329
|
2024-11-21 10:38 |
2012-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295144
|
- |
|
php
|
php
|
sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that contain a %3D sequence but no = (equals sig…
|
CWE-89
SQL Injection
|
CVE-2012-2311
|
2024-11-21 10:38 |
2012-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295145
|
- |
|
hp
|
performance_insight
|
Unspecified vulnerability in HP Performance Insight for Networks 5.3.x, 5.41, 5.41.001, and 5.41.002 allows remote authenticated users to gain privileges via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2009
|
2024-11-21 10:38 |
2012-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295146
|
- |
|
hp
|
performance_insight
|
Cross-site scripting (XSS) vulnerability in HP Performance Insight for Networks 5.3.x, 5.41, 5.41.001, and 5.41.002 allows remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2008
|
2024-11-21 10:38 |
2012-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295147
|
- |
|
hp
|
performance_insight
|
SQL injection vulnerability in HP Performance Insight for Networks 5.3.x, 5.41, 5.41.001, and 5.41.002 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-2007
|
2024-11-21 10:38 |
2012-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295148
|
- |
|
wellintech
|
kingview
|
WellinTech KingSCADA 3.0 uses a cleartext base64 format for storage of passwords in user.db, which allows context-dependent attackers to obtain sensitive information by reading this file.
|
CWE-255
Credentials Management
|
CVE-2012-1977
|
2024-11-21 10:38 |
2012-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295149
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2033
|
2024-11-21 10:38 |
2012-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295150
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 11.6.5.635 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2032
|
2024-11-21 10:38 |
2012-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
