|
291971
|
- |
|
oxwall
|
oxwall
|
Cross-site scripting (XSS) vulnerability in ow_updates/index.php in Oxwall 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the plugin parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-4928
|
2024-11-21 10:43 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291972
|
- |
|
limesurvey
|
limesurvey
|
SQL injection vulnerability in Limesurvey (a.k.a PHPSurveyor) before 1.91+ Build 120224 and earlier allows remote attackers to execute arbitrary SQL commands via the fieldnames parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2012-4927
|
2024-11-21 10:43 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291973
|
- |
|
imgpals
|
img_pals_photo_host
|
approve.php in Img Pals Photo Host 1.0 does not authenticate requests, which allows remote attackers to change the activation of administrators via the u parameter in an (1) app0 (disable) or (2) app…
|
CWE-287
Improper Authentication
|
CVE-2012-4926
|
2024-11-21 10:43 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291974
|
- |
|
imgpals
|
img_pals_photo_host
|
Multiple SQL injection vulnerabilities in approve.php in Img Pals Photo Host 1.0 allow remote attackers to execute arbitrary SQL commands via the u parameter in a (1) app0 or (2) app1 action. NOTE: …
|
CWE-89
SQL Injection
|
CVE-2012-4925
|
2024-11-21 10:43 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291975
|
- |
|
asus
|
net4switch
ipswcom_activex_component
|
Buffer overflow in the CxDbgPrint function in the ipswcom.dll ActiveX component 1.0.0.1 for ASUS Net4Switch 1.0.0020 allows remote attackers to execute arbitrary code via a long parameter to the Aler…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4924
|
2024-11-21 10:43 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291976
|
- |
|
endian
|
firewall
|
Multiple cross-site scripting (XSS) vulnerabilities in Endian Firewall 2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) createrule parameter to dnat.cgi, (2) addrule para…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4923
|
2024-11-21 10:43 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291977
|
- |
|
ibm
|
vios
aix
|
The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS before 2.2.1.4-FP-25 SP-02, does not properly handle GID values, which allows remote attackers to cause a denial of service via …
|
NVD-CWE-Other
|
CVE-2012-4817
|
2024-11-21 10:43 |
2012-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291978
|
- |
|
bitcoin
|
bitcoin_core
|
Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2012-4682.
|
NVD-CWE-noinfo
|
CVE-2012-4683
|
2024-11-21 10:43 |
2012-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291979
|
- |
|
bitcoin
|
bitcoin_core
|
Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2012-4683.
|
NVD-CWE-noinfo
|
CVE-2012-4682
|
2024-11-21 10:43 |
2012-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291980
|
- |
|
torproject
|
tor
|
The tor_timegm function in common/util.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.22-rc, does not properly validate time values, which allows remote attackers to cause a denial of service (as…
|
CWE-20
Improper Input Validation
|
CVE-2012-4922
|
2024-11-21 10:43 |
2012-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
