|
294161
|
- |
|
kylegilman
|
video_embed_\&_thumbnail_generator
|
The Media Upload form in the Video Embed & Thumbnail Generator plugin before 2.0 for WordPress allows remote attackers to obtain the installation path via unknown vectors.
|
CWE-200
Information Exposure
|
CVE-2012-1786
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294162
|
- |
|
kylegilman
|
video_embed_\&_thumbnail_generator
|
kg_callffmpeg.php in the Video Embed & Thumbnail Generator plugin before 2.0 for WordPress allows remote attackers to execute arbitrary commands via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2012-1785
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294163
|
- |
|
myjoblist
|
myjoblist
|
SQL injection vulnerability in MyJobList 0.1.3 allows remote attackers to execute arbitrary SQL commands via the eid parameter in a profile action to index.php.
|
CWE-89
SQL Injection
|
CVE-2012-1784
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294164
|
- |
|
saurabh_gupta
|
tiny_server
|
Tiny Server 1.1.9 and earlier allows remote attackers to cause a denial of service (crash) via a long string in a GET request without an HTTP version number.
|
CWE-20
Improper Input Validation
|
CVE-2012-1783
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294165
|
- |
|
osqa
|
osqa
|
Multiple cross-site scripting (XSS) vulnerabilities in questions/ask in OSQA 3b allow remote attackers to inject arbitrary web script or HTML via the (1) url bar or (2) picture bar.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1782
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294166
|
- |
|
socialcms
|
socialcms
|
Multiple cross-site scripting (XSS) vulnerabilities in ajax/commentajax.php in SocialCMS 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) TREF_email_address or (2) TR_n…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1781
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294167
|
- |
|
socialcms
|
socialcms
|
SQL injection vulnerability in search.php in SocialCMS 1.0.5 allows remote attackers to execute arbitrary SQL commands via the category parameter.
|
CWE-89
SQL Injection
|
CVE-2012-1780
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294168
|
- |
|
idevspot
|
idev-businessdirectory
|
Cross-site scripting (XSS) vulnerability in IDevSpot idev-BusinessDirectory 3.0 allows remote attackers to inject arbitrary web script or HTML via the SEARCH parameter to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1779
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294169
|
- |
|
createvision
|
createvision_cms
|
SQL injection vulnerability in artykul_print.php in CreateVision CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-1778
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294170
|
- |
|
videolan
|
vlc_media_player
|
Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1776
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
