|
295681
|
- |
|
zodiacdm
|
aboutme-plugin
|
Multiple cross-site scripting (XSS) vulnerabilities in the AboutMe plugin 1.1.1 for Vanilla Forums allow remote attackers to inject arbitrary web script or HTML via the (1) AboutMe/RealName, (2) Abou…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6557
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295682
|
- |
|
jspautsch
|
firstlastnames
|
Multiple cross-site scripting (XSS) vulnerabilities in the FirstLastNames plugin 1.1.1 for Vanilla Forums allow remote attackers to inject arbitrary web script or HTML via the (1) User/FirstName or (…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6556
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295683
|
- |
|
vanillaforums
|
latestcomment
|
Cross-site scripting (XSS) vulnerability in the LatestComment plugin 1.1 for Vanilla Forums allows remote attackers to inject arbitrary web script or HTML via the discussion title.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6555
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295684
|
- |
|
a51dev
|
activecollab_chat_module
|
functions/html_to_text.php in the Chat module before 1.5.2 for activeCollab allows remote authenticated users to execute arbitrary PHP code via the message[message_text] parameter to chat/add_messag,…
|
CWE-20
Improper Input Validation
|
CVE-2012-6554
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295685
|
- |
|
angusj
|
resource_hacker
|
Heap-based buffer overflow in Resource Hacker 3.6.0.92 allows remote attackers to execute arbitrary code via a Portable Executable (PE) file with a resource section containing a string that has many …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6553
|
2024-11-21 10:46 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295686
|
- |
|
vercot
|
serva32
|
Buffer overflow in the TFTPD service in Serva32 2.1.0 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long string in a read request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0145
|
2024-11-21 10:46 |
2013-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295687
|
- |
|
microsoft
|
windows_essentials
|
Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka "Windows Essentials Improper URI Ha…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0096
|
2024-11-21 10:46 |
2013-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295688
|
- |
|
phpvms
|
phpvms
|
Unspecified vulnerability in admin/action.php in phpVMS 2.1.x before 2.1.935 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-6552
|
2024-11-21 10:46 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295689
|
- |
|
mcafee
|
epolicy_orchestrator
|
Directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to upload arbitrary files via a crafted request over the Agent-Serve…
|
CWE-22
Path Traversal
|
CVE-2013-0141
|
2024-11-21 10:46 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295690
|
- |
|
mcafee
|
epolicy_orchestrator
|
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to execute arbitrary SQL commands via a cra…
|
CWE-89
SQL Injection
|
CVE-2013-0140
|
2024-11-21 10:46 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
