|
297031
|
- |
|
kmplayer
|
kmplayer
|
Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current w…
|
NVD-CWE-Other
|
CVE-2012-3841
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297032
|
- |
|
myclientbase
|
myclientbase
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php/users/form/user_id in MyClientBase 0.12 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name or (2) la…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3840
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297033
|
- |
|
myclientbase
|
myclientbase
|
Multiple SQL injection vulnerabilities in application/core/MY_Model.php in MyClientBase 0.12 allow remote attackers to execute arbitrary SQL commands via the (1) invoice_number or (2) tags parameter …
|
CWE-89
SQL Injection
|
CVE-2012-3839
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297034
|
- |
|
babygekko
|
baby_gekko
|
Gekko before 1.2.0 allows remote attackers to obtain the installation path via a direct request to (1) admin/templates/babygekko/index.php or (2) templates/html5demo/index.php.
|
CWE-200
Information Exposure
|
CVE-2012-3838
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297035
|
- |
|
babygekko
|
baby_gekko
|
Multiple cross-site scripting (XSS) vulnerabilities in apps/users/registration.template.php in Baby Gekko 1.2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) u…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3837
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297036
|
- |
|
babygekko
|
baby_gekko
|
Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko before 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) groupname parameter in a savecategory in the u…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3836
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297037
|
- |
|
alienvault
|
open_source_security_information_management
|
Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3835
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297038
|
- |
|
alienvault
|
open_source_security_information_management
|
SQL injection vulnerability in forensics/base_qry_main.php in AlienVault Open Source Security Information Management (OSSIM) 3.1 allows remote authenticated users to execute arbitrary SQL commands vi…
|
CWE-89
SQL Injection
|
CVE-2012-3834
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297039
|
- |
|
opensolution
|
quick.cms
|
Cross-site scripting (XSS) vulnerability in the default index page in admin/ in Quick.CMS 4.0 allows remote attackers to inject arbitrary web script or HTML via the p parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3833
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297040
|
- |
|
milesj
|
decoda
|
Cross-site scripting (XSS) vulnerability in decoda/Decoda.php in Decoda before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to (1) b or (2) div tags.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3832
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
