|
297071
|
- |
|
socialcms
|
socialcms
|
Cross-site scripting (XSS) vulnerability in my_admin/admin1_list_pages.php in SocialCMS 1.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the TR_title par…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1982
|
2024-11-21 10:38 |
2012-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297072
|
- |
|
privawall
|
privawall_antivirus
|
The scanner engine in PrivaWall Antivirus 5.6 and earlier does not recognize the Office XML (aka Open Document XML) file format, which allows remote attackers to bypass malware detection via a crafte…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1907
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297073
|
- |
|
realnetworks
|
realplayer
realplayer_sp
|
mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of servic…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1904
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297074
|
- |
|
opera
|
opera_browser
|
Opera before 11.62 on UNIX, when used in conjunction with an unspecified printing application, allows local users to overwrite arbitrary files via a symlink attack on a temporary file during printing.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1931
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297075
|
- |
|
opera
|
opera_browser
|
Opera before 11.62 on UNIX uses world-readable permissions for temporary files during printing, which allows local users to obtain sensitive information by reading these files.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1930
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297076
|
- |
|
opera
|
opera_browser
|
Opera before 11.62 on Mac OS X allows remote attackers to spoof the address field and security dialogs via crafted styling that causes page content to be displayed outside of the intended content are…
|
CWE-20
Improper Input Validation
|
CVE-2012-1929
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297077
|
- |
|
opera
|
opera_browser
|
Opera before 11.62 allows remote attackers to spoof the address field by triggering a page reload followed by a redirect to a different domain.
|
CWE-20
Improper Input Validation
|
CVE-2012-1928
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297078
|
- |
|
opera
|
opera_browser
|
Opera before 11.62 allows remote attackers to spoof the address field by triggering the launch of a dialog window associated with a different domain.
|
CWE-20
Improper Input Validation
|
CVE-2012-1927
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297079
|
- |
|
opera
|
opera_browser
|
Opera before 11.62 allows remote attackers to bypass the Same Origin Policy via the (1) history.pushState and (2) history.replaceState functions in conjunction with cross-domain frames, leading to un…
|
CWE-200
Information Exposure
|
CVE-2012-1926
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297080
|
- |
|
opera
|
opera_browser
|
Opera before 11.62 does not ensure that a dialog window is placed on top of content windows, which makes it easier for user-assisted remote attackers to trick users into downloading and executing arb…
|
NVD-CWE-Other
|
CVE-2012-1925
|
2024-11-21 10:38 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
