|
293141
|
- |
|
freenac
|
freenac
|
SQL injection vulnerability in deviceadd.php in FreeNAC 3.02 allows remote attackers to execute arbitrary SQL commands via the status parameter.
|
CWE-20
Improper Input Validation
|
CVE-2012-6560
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293142
|
- |
|
freenac
|
freenac
|
Multiple cross-site scripting (XSS) vulnerabilities in FreeNAC 3.02 allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) mac, (3) graphtype, (4) name, or (5) type pa…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6559
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293143
|
- |
|
heaventools
|
pe_explorer
|
Heap-based buffer overflow in HeavenTools PE Explorer 1.99 R6 allows remote attackers to execute arbitrary code via the size value for a string in the resource section of a Portable Executable (PE) f…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6558
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293144
|
- |
|
zodiacdm
|
aboutme-plugin
|
Multiple cross-site scripting (XSS) vulnerabilities in the AboutMe plugin 1.1.1 for Vanilla Forums allow remote attackers to inject arbitrary web script or HTML via the (1) AboutMe/RealName, (2) Abou…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6557
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293145
|
- |
|
jspautsch
|
firstlastnames
|
Multiple cross-site scripting (XSS) vulnerabilities in the FirstLastNames plugin 1.1.1 for Vanilla Forums allow remote attackers to inject arbitrary web script or HTML via the (1) User/FirstName or (…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6556
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293146
|
- |
|
vanillaforums
|
latestcomment
|
Cross-site scripting (XSS) vulnerability in the LatestComment plugin 1.1 for Vanilla Forums allows remote attackers to inject arbitrary web script or HTML via the discussion title.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6555
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293147
|
- |
|
a51dev
|
activecollab_chat_module
|
functions/html_to_text.php in the Chat module before 1.5.2 for activeCollab allows remote authenticated users to execute arbitrary PHP code via the message[message_text] parameter to chat/add_messag,…
|
CWE-20
Improper Input Validation
|
CVE-2012-6554
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293148
|
- |
|
angusj
|
resource_hacker
|
Heap-based buffer overflow in Resource Hacker 3.6.0.92 allows remote attackers to execute arbitrary code via a Portable Executable (PE) file with a resource section containing a string that has many …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6553
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293149
|
- |
|
vercot
|
serva32
|
Buffer overflow in the TFTPD service in Serva32 2.1.0 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long string in a read request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0145
|
2024-11-21 10:46 |
2013-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293150
|
- |
|
microsoft
|
windows_essentials
|
Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka "Windows Essentials Improper URI Ha…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0096
|
2024-11-21 10:46 |
2013-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
