|
292881
|
- |
|
opera
|
opera_browser
|
Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, does not properly escape characters in DOM elements, which makes it easier for remote attackers to bypass c…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4144
|
2024-11-21 10:42 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292882
|
- |
|
opera
|
opera_browser
|
Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, allows user-assisted remote attackers to trick users into downloading and executing arbitrary files via a s…
|
CWE-94
Code Injection
|
CVE-2012-4143
|
2024-11-21 10:42 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292883
|
- |
|
opera
|
opera_browser
|
Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, ignores some characters in HTML documents in unspecified circumstances, which makes it easier for remote at…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4142
|
2024-11-21 10:42 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292884
|
- |
|
citrix
|
provisioning_services
|
Heap-based buffer overflow in the SoapServer service in Citrix Provisioning Services 5.0, 5.1, 5.6, 5.6 SP1, 6.0, and 6.1 allows remote attackers to execute arbitrary code via a crafted string associ…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4068
|
2024-11-21 10:42 |
2012-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292885
|
- |
|
palo_alto
|
networks
global_protected_gateway
ssl_vpn
|
Cross-site scripting (XSS) vulnerability in global-protect/login.esp in Palo Alto Networks Global Protect Portal, Global Protect Gateway, and SSL VPN portals 3.1.x through 3.1.11 and 4.0.x through 4.…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4043
|
2024-11-21 10:42 |
2012-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292886
|
- |
|
asp-dev
|
xm_diary
|
Multiple SQL injection vulnerabilities in ASP-DEv XM Diary allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to diary_view.asp or (2) view_date parameter to default.as…
|
CWE-89
SQL Injection
|
CVE-2012-4061
|
2024-11-21 10:42 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292887
|
- |
|
asp-dev
|
xm_forums
|
Multiple SQL injection vulnerabilities in ASP-DEv XM Forums RC3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) profile.asp, (2) forum.asp, or (3) topic.asp.
|
CWE-89
SQL Injection
|
CVE-2012-4060
|
2024-11-21 10:42 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292888
|
- |
|
socketmail
|
socketmail
|
Cross-site request forgery (CSRF) vulnerability in home/secretqtn.php in SocketMail Pro 2.2.9 allows remote attackers to hijack the authentication of arbitrary users for requests that change user sec…
|
CWE-352
Origin Validation Error
|
CVE-2012-4059
|
2024-11-21 10:42 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292889
|
- |
|
socketmail
|
socketmail
|
Cross-site scripting (XSS) vulnerability in SocketMail Pro 2.2.9 allows remote attackers to inject arbitrary web script or HTML via the subject of an email.
|
CWE-79
Cross-site Scripting
|
CVE-2012-4058
|
2024-11-21 10:42 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292890
|
- |
|
twd-industries
|
remote-anything
|
Buffer overflow in the Player in Remote-Anything 5.60.15 allows remote attackers to execute arbitrary code via a crafted flm file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4057
|
2024-11-21 10:42 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
