|
293701
|
- |
|
nancy_wichmann
drupal
|
glossary
drupal
|
Cross-site scripting (XSS) vulnerability in the Glossary module 6.x-1.x before 6.x-1.8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "ta…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2339
|
2024-11-21 10:38 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293702
|
- |
|
johan_cwiklinski
|
galette
|
SQL injection vulnerability in includes/picture.class.php in Galette 0.63, 0.63.1, 0.63.2, 0.63.3, and 0.64rc1 allows remote attackers to execute arbitrary SQL commands via the id_adh parameter to pi…
|
CWE-89
SQL Injection
|
CVE-2012-2338
|
2024-11-21 10:38 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293703
|
- |
|
skincrafter
|
skincrafter
|
Buffer overflow in the InitLicenKeys function in a certain ActiveX control in SkinCrafter3_vs2005.dll in SkinCrafter 3.0 allows remote attackers to execute arbitrary code via a long string in the fir…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2271
|
2024-11-21 10:38 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293704
|
- |
|
php
|
php
|
Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2376
|
2024-11-21 10:38 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293705
|
- |
|
rahul_singla
|
take_control
|
Cross-site request forgery (CSRF) vulnerability in the Take Control module 6.x-2.x before 6.x-2.2 for Drupal allows remote attackers to hijack the authentication of unspecified users for Ajax request…
|
CWE-352
Origin Validation Error
|
CVE-2012-2341
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293706
|
- |
|
connman
|
connman
|
Integer overflow in the dhcpv6_get_option function in gdhcp/client.c in ConnMan before 0.85 allows remote attackers to cause a denial of service (infinite loop and crash) via an invalid length value …
|
CWE-189
Numeric Errors
|
CVE-2012-2322
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293707
|
- |
|
connman
|
connman
|
The loopback plug-in in ConnMan before 0.85 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) host name or (2) domain name in a DHCP reply.
|
CWE-20
Improper Input Validation
|
CVE-2012-2321
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293708
|
- |
|
connman
|
connman
|
ConnMan before 0.85 does not ensure that netlink messages originate from the kernel, which allows remote attackers to bypass intended access restrictions and cause a denial of service via a crafted n…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2320
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293709
|
- |
|
debian
|
texlive-extra-utils
|
latex2man in texlive-extra-utils 2011.20120322, and possibly other versions or packages, when used with the H or T option, allows local users to overwrite arbitrary files via a symlink attack on a te…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2120
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293710
|
- |
|
x.org
|
x11
|
Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifi…
|
CWE-20
Improper Input Validation
|
CVE-2012-2118
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
