|
294901
|
- |
|
zen-cart
|
zen_cart
|
Cross-site scripting (XSS) vulnerability in zc_install/includes/modules/pages/database_setup/header_php.php in Zen Cart 1.5.0 and earlier, when the software is being installed, allows remote attacker…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1413
|
2024-11-21 10:36 |
2012-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294902
|
- |
|
php
|
php
|
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause…
|
CWE-20
Improper Input Validation
|
CVE-2012-1172
|
2024-11-21 10:36 |
2012-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294903
|
- |
|
lunascape
|
ilunascape_android
|
The iLunascape application 1.0.4.0 and earlier for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive stored information via a crafted applicatio…
|
CWE-200
Information Exposure
|
CVE-2012-1249
|
2024-11-21 10:36 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294904
|
- |
|
linux
|
linux_kernel
|
The Linux kernel before 3.3.1, when KVM is used, allows guest OS users to cause a denial of service (host OS crash) by leveraging administrative access to the guest OS, related to the pmd_none_or_cle…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1179
|
2024-11-21 10:36 |
2012-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294905
|
7.8 |
HIGH
Local
|
linux
redhat
suse
|
linux_kernel
enterprise_linux
enterprise_mrg
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_high_availability_extension
|
The regset (aka register set) feature in the Linux kernel before 3.2.10 does not properly handle the absence of .get and .set methods, which allows local users to cause a denial of service (NULL poin…
|
CWE-476
NULL Pointer Dereference
|
CVE-2012-1097
|
2024-11-21 10:36 |
2012-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294906
|
5.5 |
MEDIUM
Local
|
linux
redhat
suse
|
linux_kernel
enterprise_mrg
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_high_availability_extension
|
The cifs_lookup function in fs/cifs/dir.c in the Linux kernel before 3.2.10 allows local users to cause a denial of service (OOPS) via attempted access to a special file, as demonstrated by a FIFO.
|
CWE-20
Improper Input Validation
|
CVE-2012-1090
|
2024-11-21 10:36 |
2012-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294907
|
5.5 |
MEDIUM
Local
|
linux
fedoraproject
suse
|
linux_kernel
fedora
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_high_availability_extension
|
The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local …
|
CWE-476
NULL Pointer Dereference
|
CVE-2012-1146
|
2024-11-21 10:36 |
2012-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294908
|
- |
|
basercms
|
basercms
|
app/config/core.php in baserCMS 1.6.15 and earlier does not properly handle installations in shared-hosting environments, which allows remote attackers to hijack sessions by leveraging administrative…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1248
|
2024-11-21 10:36 |
2012-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294909
|
- |
|
webcreate
|
web_mart
|
Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and earlier, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML by leveraging support for…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1247
|
2024-11-21 10:36 |
2012-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294910
|
- |
|
webcreate
|
web_mart
|
Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and earlier might allow remote attackers to inject arbitrary web script or HTML via a crafted cookie.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1246
|
2024-11-21 10:36 |
2012-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
