|
291681
|
- |
|
bitweaver
|
bitweaver
|
Directory traversal vulnerability in gmap/view_overlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" (dot dot encoded slash) sequences in the overlay_…
|
CWE-22
Path Traversal
|
CVE-2012-5192
|
2024-11-21 10:44 |
2014-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291682
|
- |
|
mediawiki
|
mediawiki
|
Cross-site request forgery (CSRF) vulnerability in the CentralAuth extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to hijack the authenti…
|
CWE-352
Origin Validation Error
|
CVE-2012-5394
|
2024-11-21 10:44 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291683
|
- |
|
jforum
|
jforum
|
Open redirect vulnerability in JForum 2.1.9 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the returnPath parameter in a validateLogin acti…
|
CWE-20
Improper Input Validation
|
CVE-2012-5338
|
2024-11-21 10:44 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291684
|
- |
|
apache
redhat
|
cxf
jboss_enterprise_web_platform
jboss_enterprise_soa_platform
jboss_fuse_esb_enterprise
jboss_enterprise_portal_platform
jboss_enterprise_application_platform
|
Apache CXF 2.5.x before 2.5.10, 2.6.x before CXF 2.6.7, and 2.7.x before CXF 2.7.4 does not verify that a specified cryptographic algorithm is allowed by the WS-SecurityPolicy AlgorithmSuite definiti…
|
CWE-310
Cryptographic Issues
|
CVE-2012-5575
|
2024-11-21 10:44 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291685
|
- |
|
juniper
|
ive_os
secure_access_virtual_appliance
fips_secure_access_4000
fips_secure_access_4500
fips_secure_access_6000
fips_secure_access_6500
mag2600_gateway
mag4610_gateway
mag6610_…
|
Cross-site scripting (XSS) vulnerability in the help page in Juniper Secure Access (SA) with IVE OS before 7.1r13, 7.2.x before 7.2r7, and 7.3.x before 7.3r2 allows remote attackers to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5460
|
2024-11-21 10:44 |
2013-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291686
|
- |
|
hp
|
system_management_homepage
|
HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability tha…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5217
|
2024-11-21 10:44 |
2013-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291687
|
- |
|
hp
|
service_manager_web_tier
|
HP Service Manager Web Tier 9.31 before 9.31.2004 p2 allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2012-5222
|
2024-11-21 10:44 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291688
|
- |
|
hp
|
color_laserjet_enterprise_cp4525
laserjet_4345_mfp
laserjet_9040
laserjet_p4015
color_laserjet_cp3525
laserjet_m3035_mfp
color_laserjet_cp4005
color_laserjet_cp3505
laserjet_9…
|
Directory traversal vulnerability in the PostScript Interpreter, as used on the HP LaserJet 4xxx, 5200, 90xx, M30xx, M4345, M50xx, M90xx, P3005, and P4xxx; LaserJet Enterprise P3015; Color LaserJet 3…
|
NVD-CWE-noinfo
|
CVE-2012-5221
|
2024-11-21 10:44 |
2013-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291689
|
- |
|
hp
|
managed_printing_administration
|
Cross-site scripting (XSS) vulnerability in HP Managed Printing Administration (MPA) before 2.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5219
|
2024-11-21 10:44 |
2013-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291690
|
- |
|
hp
|
storage_data_protector
|
Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows local users to gain privileges via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5220
|
2024-11-21 10:44 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
