|
291661
|
- |
|
ibm
|
sterling_connect
|
The Session Manager in IBM Sterling Connect:Direct through 4.1.0.3 on UNIX allows remote attackers to cause a denial of service (daemon crash and disk consumption) via crafted data.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6352
|
2024-11-21 10:46 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291662
|
- |
|
ibm
|
cognos_tm1
|
Cross-site scripting (XSS) vulnerability in the Web component in IBM Cognos TM1 before 9.5.2 FP3 and 10.1 before 10.1 FP1 allows remote attackers to inject arbitrary web script or HTML via unspecifie…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6350
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291663
|
- |
|
sysax
|
multi_server
|
Stack-based buffer overflow in Sysax Multi Server before 5.52, when HTTP is enabled, allows remote authenticated users with the create folder permission to execute arbitrary code via a crafted reques…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6530
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291664
|
- |
|
marinet
|
marinet_cms
|
Multiple SQL injection vulnerabilities in Marinet CMS allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) galleryphoto.php or (2) gallery.php; or the roomid parameter…
|
CWE-89
SQL Injection
|
CVE-2012-6529
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291665
|
- |
|
atutor
|
atutor
|
Multiple cross-site scripting (XSS) vulnerabilities in ATutor before 2.1 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) themes/default/tile_search/index.tmpl.p…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6528
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291666
|
- |
|
joedolson
wordpress
|
my_calendar
wordpress
|
Cross-site scripting (XSS) vulnerability in the My Calendar plugin before 1.10.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6527
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291667
|
- |
|
vastal
|
freelance_zone
|
SQL injection vulnerability in show_code.php in Vastal I-Tech Freelance Zone allows remote attackers to execute arbitrary SQL commands via the code_id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6526
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291668
|
- |
|
phpbridges_dev_team
|
phpbridges
|
SQL injection vulnerability in members.php in PHPBridges allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6525
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291669
|
- |
|
powie
|
pgb
|
SQL injection vulnerability in kommentar.php in pGB 2.12 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6524
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291670
|
- |
|
w-cms
|
w-cms
|
Multiple cross-site scripting (XSS) vulnerabilities in w-CMS 2.01 allow remote attackers to inject arbitrary web script or HTML via (1) the p parameter in the getMenus function in codes/wcms.php; or …
|
CWE-79
Cross-site Scripting
|
CVE-2012-6523
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
