|
295381
|
- |
|
yoono
|
yoono_for_firefox
|
Cross-site scripting (XSS) vulnerability in the Add friends module in the Yoono extension before 7.7.8 for Firefox allows remote attackers to inject arbitrary web script or HTML via the create field …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1215
|
2024-11-21 10:36 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295382
|
- |
|
yoono
|
yoono_desktop
|
Cross-site scripting (XSS) vulnerability in the Add friends module in Yoono Desktop Application before 1.8.21 allows remote attackers to inject arbitrary web script or HTML via the create field in a …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1214
|
2024-11-21 10:36 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295383
|
- |
|
nova-cms
|
nova_cms
|
Multiple PHP remote file inclusion vulnerabilities in Nova CMS allow remote attackers to execute arbitrary PHP code via a URL in the (1) fileType parameter to optimizer/index.php, (2) id parameter to…
|
CWE-94
Code Injection
|
CVE-2012-1200
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295384
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
base_ag_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allows remote attackers to execute arbitrary code by uploading contents of the file with an executable extension via a create actio…
|
CWE-20
Improper Input Validation
|
CVE-2012-1198
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295385
|
- |
|
acd_systems
|
acdsee
|
Integer overflow in the IDE_ACDStd.apl module for ACDSee 14.1 Build 137 allows remote attackers to execute arbitrary code via crafted "image dimension values" in a BMP file, which triggers a heap-bas…
|
CWE-189
Numeric Errors
|
CVE-2012-1197
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295386
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) BASE_path parameter to …
|
CWE-94
Code Injection
|
CVE-2012-1199
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295387
|
- |
|
landesk
|
lenovo_thinkmanagement_console
|
Directory traversal vulnerability in the VulCore web service (WSVulnerabilityCore/VulCore.asmx) in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. (dot…
|
CWE-22
Path Traversal
|
CVE-2012-1196
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295388
|
- |
|
landesk
|
lenovo_thinkmanagement_console
|
Unrestricted file upload vulnerability in andesk/managementsuite/core/core.anonymous/ServerSetup.asmx in the ServerSetup web service in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1195
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295389
|
- |
|
microsoft
|
windows_server_2008
|
The resolver in the DNS Server service in Microsoft Windows Server 2008 before R2 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query,…
|
NVD-CWE-Other
|
CVE-2012-1194
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295390
|
- |
|
powerdns
|
powerdns_recursor
|
The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote att…
|
NVD-CWE-Other
|
CVE-2012-1193
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
