|
297271
|
- |
|
snitz_communications
|
snitz_forums_2000
|
SQL injection vulnerability in forum.asp in Snitz Forums 2000 allows remote attackers to execute arbitrary SQL commands via the TOPIC_ID parameter.
|
CWE-89
SQL Injection
|
CVE-2012-5313
|
2024-11-21 10:44 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297272
|
- |
|
tribiq
|
tribiq_cms
|
SQL injection vulnerability in Tribiq CMS allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2012-5312
|
2024-11-21 10:44 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297273
|
- |
|
getshopped
|
wp_e-commerce
|
SQL injection vulnerability in the WP e-Commerce plugin before 3.8.7.6 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-5310
|
2024-11-21 10:44 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297274
|
- |
|
ibm
|
lotus_notes_traveler
|
servlet/traveler in IBM Lotus Notes Traveler through 8.5.3.3 Interim Fix 1 does not properly restrict invalid authentication attempts, which makes it easier for remote attackers to obtain access via …
|
CWE-287
Improper Authentication
|
CVE-2012-5309
|
2024-11-21 10:44 |
2012-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297275
|
- |
|
ibm
|
lotus_notes_traveler
|
Cross-site request forgery (CSRF) vulnerability in servlet/traveler in IBM Lotus Notes Traveler through 8.5.3.3 Interim Fix 1 allows remote attackers to hijack the authentication of arbitrary users f…
|
CWE-352
Origin Validation Error
|
CVE-2012-5308
|
2024-11-21 10:44 |
2012-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297276
|
- |
|
ibm
|
lotus_notes_traveler
|
Cross-site scripting (XSS) vulnerability in servlet/traveler in IBM Lotus Notes Traveler before 8.5.3.3 Interim Fix 1, when Firefox is used, allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5307
|
2024-11-21 10:44 |
2012-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297277
|
- |
|
dlink
|
dcs-5605_ptz_ip_network_camera
camera_stream_client_activex_control
|
Stack-based buffer overflow in the SelectDirectory method in DcsCliCtrl.dll in Camera Stream Client ActiveX Control, as used in D-Link DCS-5605 PTZ IP Network Camera, allows remote attackers to cause…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5306
|
2024-11-21 10:44 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297278
|
- |
|
directadmin
|
directadmin
|
Cross-site scripting (XSS) vulnerability in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allows remote attackers to inject arbitrary web script or HTML via the domain parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5305
|
2024-11-21 10:44 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297279
|
- |
|
yuriy_v_semenikhin
|
yvs_image_gallery
|
Static code injection vulnerability in administration/install.php in YVS Image Gallery allows remote attackers to inject arbitrary PHP code into functions/db_connect.php via unspecified vectors. NOT…
|
CWE-94
Code Injection
|
CVE-2012-5304
|
2024-11-21 10:44 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297280
|
- |
|
monkey-project
|
monkey
|
Monkey HTTP Daemon 0.9.3 might allow local users to overwrite arbitrary files via a symlink attack on a PID file, as demonstrated by a pathname different from the default /var/run/monkey.pid pathname.
|
CWE-59
Link Following
|
CVE-2012-5303
|
2024-11-21 10:44 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
