|
294281
|
- |
|
openx
|
openx
|
Cross-site scripting (XSS) vulnerability in admin/plugin-index.php in OpenX 2.8.10 before revision 81823 allows remote attackers to inject arbitrary web script or HTML via the parent parameter in an …
|
CWE-79
Cross-site Scripting
|
CVE-2012-4989
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294282
|
- |
|
intelliants
|
subrion_cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Subrion CMS before 2.2.3 allow remote attackers to hijack the authentication of administrators for requests that add, delete, or modify s…
|
CWE-352
Origin Validation Error
|
CVE-2012-4773
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294283
|
- |
|
intelliants
|
subrion_cms
|
SQL injection vulnerability in register/ in Subrion CMS before 2.2.3 allows remote attackers to execute arbitrary SQL commands via the plan_id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-4772
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294284
|
- |
|
intelliants
|
subrion_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Subrion CMS before 2.2.3 allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) admin/accounts/, (2) admin/ma…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4771
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294285
|
- |
|
openfabrics
|
ibacm
|
ibacm 1.0.7 creates files with world-writable permissions, which allows local users to overwrite the ib_acm daemon log or ibacm.port file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4518
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294286
|
- |
|
openfabrics
|
ibacm
|
ibacm before 1.0.6 does not properly manage reference counts for multicast connections, which allows remote attackers to cause a denial of service (ibacm service crash) via a crafted join response.
|
CWE-399
Resource Management Errors
|
CVE-2012-4517
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294287
|
- |
|
openfabrics
|
librdmacm
|
librdmacm 1.0.16, when ibacm.port is not specified, connects to port 6125, which allows remote attackers to specify the address resolution information for the application via a malicious ib_acm servi…
|
NVD-CWE-Other
|
CVE-2012-4516
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294288
|
- |
|
gnome
|
libsocialweb
|
services/flickr/flickr.c in libsocialweb before 0.25.21 automatically connects to Flickr when no Flickr account is set, which might allow remote attackers to obtain sensitive information via a man-in…
|
CWE-200
Information Exposure
|
CVE-2012-4511
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294289
|
- |
|
claws-mail
|
claws-mail
|
The strchr function in procmime.c in Claws Mail (aka claws-mail) 3.8.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted email.
|
NVD-CWE-Other
|
CVE-2012-4507
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294290
|
- |
|
sitaram_chamarty
gitolite
|
gitolite
|
Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories …
|
CWE-22
Path Traversal
|
CVE-2012-4506
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
