|
293031
|
- |
|
drupal
|
drupal
|
Cross-site request forgery (CSRF) vulnerability in the Aggregator module in Drupal 6.x before 6.23 and 7.x before 7.11 allows remote attackers to hijack the authentication of unspecified victims for …
|
CWE-352
Origin Validation Error
|
CVE-2012-0826
|
2024-11-21 10:35 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293032
|
- |
|
drupal
|
drupal
|
Drupal 6.x before 6.23 and 7.x before 7.11 does not verify that Attribute Exchange (AX) information is signed, which allows remote attackers to modify potentially sensitive AX information without det…
|
CWE-200
Information Exposure
|
CVE-2012-0825
|
2024-11-21 10:35 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293033
|
- |
|
gnu
|
glibc
|
Integer overflow in the vfprintf function in stdio-common/vfprintf.c in glibc 2.14 and other versions allows context-dependent attackers to bypass the FORTIFY_SOURCE protection mechanism, conduct for…
|
CWE-189
Numeric Errors
|
CVE-2012-0864
|
2024-11-21 10:35 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293034
|
- |
|
sun
|
sunos
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Libraries/Libc.
|
NVD-CWE-noinfo
|
CVE-2012-0570
|
2024-11-21 10:35 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293035
|
- |
|
sun
|
sunos
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10 allows local users to affect confidentiality via unknown vectors related to Utility/fdformat.
|
NVD-CWE-noinfo
|
CVE-2012-0568
|
2024-11-21 10:35 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293036
|
- |
|
ibm
|
scale_out_network_attached_storage
|
IBM Scale Out Network Attached Storage (SONAS) 1.3 before 1.3.2.3 requires cleartext storage of LDAP credentials without recommending a less privileged LDAP account, which might allow attackers to ob…
|
CWE-255
CWE-264
Credentials Management
Permissions, Privileges, and Access Controls
|
CVE-2012-0706
|
2024-11-21 10:35 |
2013-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293037
|
- |
|
oracle
mysql
|
mysql
|
Buffer overflow in yaSSL, as used in MySQL 5.1.x before 5.1.68 and 5.5.x before 5.5.28, has unspecified impact and attack vectors, a different vulnerability than CVE-2013-1492.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0553
|
2024-11-21 10:35 |
2013-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293038
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_web_platform
jboss_enterprise_brms_platform
|
The (1) JMXInvokerHAServlet and (2) EJBInvokerHAServlet invoker servlets in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and …
|
CWE-287
Improper Authentication
|
CVE-2012-0874
|
2024-11-21 10:35 |
2013-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293039
|
- |
|
ibm
|
infosphere_information_server
infosphere_information_server_metabrokers_\&_bridges
|
InfoSphere Import Export Manager in InfoSphere Information Server MetaBrokers & Bridges (MBB) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, 8.7, and 9.1 does not validate unspecified inpu…
|
CWE-20
Improper Input Validation
|
CVE-2012-0705
|
2024-11-21 10:35 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293040
|
- |
|
ibm
|
infosphere_information_server
infosphere_information_server_information_services_framework
|
Open redirect vulnerability in Information Services Framework (ISF) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 allows remote attackers to redirect users to arbitrary web sites …
|
CWE-20
Improper Input Validation
|
CVE-2012-0703
|
2024-11-21 10:35 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
