|
293031
|
- |
|
johan_cwiklinski
|
galette
|
SQL injection vulnerability in includes/picture.class.php in Galette 0.63, 0.63.1, 0.63.2, 0.63.3, and 0.64rc1 allows remote attackers to execute arbitrary SQL commands via the id_adh parameter to pi…
|
CWE-89
SQL Injection
|
CVE-2012-2338
|
2024-11-21 10:38 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293032
|
- |
|
skincrafter
|
skincrafter
|
Buffer overflow in the InitLicenKeys function in a certain ActiveX control in SkinCrafter3_vs2005.dll in SkinCrafter 3.0 allows remote attackers to execute arbitrary code via a long string in the fir…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2271
|
2024-11-21 10:38 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293033
|
- |
|
php
|
php
|
Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2376
|
2024-11-21 10:38 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293034
|
- |
|
rahul_singla
|
take_control
|
Cross-site request forgery (CSRF) vulnerability in the Take Control module 6.x-2.x before 6.x-2.2 for Drupal allows remote attackers to hijack the authentication of unspecified users for Ajax request…
|
CWE-352
Origin Validation Error
|
CVE-2012-2341
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293035
|
- |
|
connman
|
connman
|
Integer overflow in the dhcpv6_get_option function in gdhcp/client.c in ConnMan before 0.85 allows remote attackers to cause a denial of service (infinite loop and crash) via an invalid length value …
|
CWE-189
Numeric Errors
|
CVE-2012-2322
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293036
|
- |
|
connman
|
connman
|
The loopback plug-in in ConnMan before 0.85 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) host name or (2) domain name in a DHCP reply.
|
CWE-20
Improper Input Validation
|
CVE-2012-2321
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293037
|
- |
|
connman
|
connman
|
ConnMan before 0.85 does not ensure that netlink messages originate from the kernel, which allows remote attackers to bypass intended access restrictions and cause a denial of service via a crafted n…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2320
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293038
|
- |
|
debian
|
texlive-extra-utils
|
latex2man in texlive-extra-utils 2011.20120322, and possibly other versions or packages, when used with the H or T option, allows local users to overwrite arbitrary files via a symlink attack on a te…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2120
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293039
|
- |
|
x.org
|
x11
|
Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifi…
|
CWE-20
Improper Input Validation
|
CVE-2012-2118
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293040
|
- |
|
gajim
|
gajim
|
src/common/latex.py in Gajim 0.15 allows local users to overwrite arbitrary files via a symlink attack on a temporary latex file, related to the get_tmpfile_name function.
|
CWE-59
Link Following
|
CVE-2012-2093
|
2024-11-21 10:38 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
