|
293481
|
- |
|
netartmedia
|
car_portal
|
Multiple cross-site request forgery (CSRF) vulnerabilities in NetArt Media Car Portal 3.0 allow remote attackers to hijack the authentication of administrators for requests that (1) change arbitrary …
|
CWE-352
Origin Validation Error
|
CVE-2012-6508
|
2024-11-21 10:46 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293482
|
- |
|
jason_sexauer
|
churchcms
|
Multiple SQL injection vulnerabilities in admin.php in ChurchCMS 0.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) uname or (2) pass parameters in a login action.
|
CWE-89
SQL Injection
|
CVE-2012-6507
|
2024-11-21 10:46 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293483
|
- |
|
zingiri
|
zingiri_web_shop
|
Multiple cross-site scripting (XSS) vulnerabilities in the Zingiri Web Shop plugin 2.4.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter in zing…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6506
|
2024-11-21 10:46 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293484
|
- |
|
shawn_bradley
|
php_volunteer_management
|
Cross-site scripting (XSS) vulnerability in mods/hours/data/get_hours.php in PHP Volunteer Management 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6505
|
2024-11-21 10:46 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293485
|
- |
|
shawn_bradley
|
php_volunteer_management
|
SQL injection vulnerability in mods/hours/data/get_hours.php in PHP Volunteer Management 1.0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6504
|
2024-11-21 10:46 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293486
|
- |
|
ninjaforge
|
com_ninjaxplorer
|
Unspecified vulnerability in the NinjaXplorer component before 1.0.7 for Joomla! has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-6503
|
2024-11-21 10:46 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293487
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer before 10 allows remote attackers to obtain sensitive information about the existence of files, and read certain data from files, via a UNC share pathname in the SRC attri…
|
CWE-200
Information Exposure
|
CVE-2012-6502
|
2024-11-21 10:46 |
2013-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293488
|
- |
|
cisco
|
nx-os
nexus_7000
nexus_7000_10-slot
nexus_7000_18-slot
nexus_7000_9-slot
|
Cisco NX-OS on Nexus 7000 series switches does not properly handle certain line-card replacements, which might allow remote authenticated users to cause a denial of service (memory consumption) via a…
|
CWE-399
Resource Management Errors
|
CVE-2012-6396
|
2024-11-21 10:46 |
2013-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293489
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
asa_1000v_cloud_firewall
asa_5500
|
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecified input related to UNC share pathnames, which allows remote authenticated users to cause a denial…
|
CWE-20
Improper Input Validation
|
CVE-2012-6395
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293490
|
- |
|
ibm
|
intelligent_operations_center
|
Cross-site scripting (XSS) vulnerability in IBM Intelligent Operations Center 1.5.0 allows remote attackers to inject arbitrary web script or HTML via event data fields.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6360
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
