|
295031
|
- |
|
rsa
|
envision
|
Multiple SQL injection vulnerabilities in EMC RSA enVision 4.x before 4.1 Patch 4 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-0401
|
2024-11-21 10:34 |
2012-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295032
|
- |
|
rsa
|
envision
|
EMC RSA enVision 4.x before 4.1 Patch 4 does not properly restrict the number of failed authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
|
CWE-287
Improper Authentication
|
CVE-2012-0400
|
2024-11-21 10:34 |
2012-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295033
|
- |
|
rsa
|
envision
|
Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA enVision 4.x before 4.1 Patch 4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-0399
|
2024-11-21 10:34 |
2012-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295034
|
- |
|
janetter
|
janetter
|
Janetter before 3.3.0.0 (aka 3.3.0) allows remote attackers to obtain session information for twitter.com web sites via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2012-0328
|
2024-11-21 10:34 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295035
|
- |
|
golismero
|
golismero
|
libs/updater.py in GoLismero 0.6.3, and other versions before Git revision 2b3bb43d6867, as used in backtrack and possibly other products, allows local users to overwrite arbitrary files via a symlin…
|
CWE-59
Link Following
|
CVE-2012-0054
|
2024-11-21 10:34 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295036
|
- |
|
tetsuya_aoyama
|
twicca
|
The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted applica…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0326
|
2024-11-21 10:34 |
2012-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295037
|
- |
|
symantec
|
altiris_wise_package_studio
|
Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio before 8.0MR1 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-0293
|
2024-11-21 10:34 |
2012-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295038
|
- |
|
ge
|
intelligent_platforms_proficy_real-time_information_portal
|
Directory traversal vulnerability in rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6, 3.0, 3.0 SP1, and 3.5 allows remote attackers to…
|
CWE-22
Path Traversal
|
CVE-2012-0232
|
2024-11-21 10:34 |
2012-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295039
|
- |
|
ge
|
intelligent_platforms_proficy_plant_applications
|
PRLicenseMgr.exe in the Proficy Server License Manager in GE Intelligent Platforms Proficy Plant Applications 5.0 and earlier allows remote attackers to cause a denial of service (memory corruption) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0231
|
2024-11-21 10:34 |
2012-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295040
|
- |
|
ge
|
intelligent_platforms_proficy_plant_applications
|
PRRDS.exe in the Proficy Remote Data Service in GE Intelligent Platforms Proficy Plant Applications 5.0 and earlier allows remote attackers to cause a denial of service (memory corruption) or possibl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0230
|
2024-11-21 10:34 |
2012-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
