|
294561
|
- |
|
360systems
|
maxx
image_server_2000
image_server_maxx
|
360 Systems Maxx, Image Server Maxx, and Image Server 2000 have a hardcoded password for the root account, which makes it easier for remote attackers to execute arbitrary code, or modify video conten…
|
CWE-255
Credentials Management
|
CVE-2012-4702
|
2024-11-21 10:43 |
2013-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294562
|
- |
|
trimble
|
infrastructure_gnss_series_receiver_netr3
infrastructure_gnss_series_receiver_netr5
infrastructure_gnss_series_receiver_netr8
infrastructure_gnss_series_receiver_netr9
infrastructure_netr…
|
Cross-site scripting (XSS) vulnerability in the Receiver Web User Interface on Trimble Infrastructure GNSS Series Receivers NetR3, NetR5, NetR8, and NetR9 before 4.70, and NetRS before 1.3-2, allows …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5053
|
2024-11-21 10:43 |
2013-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294563
|
- |
|
ibm
|
websphere_commerce
|
Unspecified vulnerability in the web services framework in IBM WebSphere Commerce 6.0 through 6.0.0.11 and 7.0 through 7.0.0.6 allows remote attackers to cause a denial of service (login outage) via …
|
NVD-CWE-noinfo
|
CVE-2012-4855
|
2024-11-21 10:43 |
2013-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294564
|
- |
|
ibm
|
cognos_business_intelligence
|
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 does not properly validate Java serialized input, which allows remote attackers to exec…
|
CWE-20
Improper Input Validation
|
CVE-2012-4858
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294565
|
- |
|
ibm
|
cognos_business_intelligence
|
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote attackers to conduct XPath injection attacks, and call XPath extension fu…
|
CWE-94
Code Injection
|
CVE-2012-4840
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294566
|
- |
|
ibm
|
cognos_business_intelligence
|
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote authenticated users to conduct XPath injection attacks, and read arbitrar…
|
CWE-200
Information Exposure
|
CVE-2012-4837
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294567
|
- |
|
ibm
|
cognos_business_intelligence
|
Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote authenticated users to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4836
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294568
|
- |
|
ibm
|
cognos_business_intelligence
|
Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote attackers to inject arbitrary…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4835
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294569
|
- |
|
linux
|
linux_kernel
|
block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restricti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4542
|
2024-11-21 10:43 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294570
|
- |
|
ibm
|
lotus_domino
|
Cross-site scripting (XSS) vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-4844
|
2024-11-21 10:43 |
2013-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
