|
292841
|
- |
|
joomla
|
joomla\!
|
Joomla! 2.5.3 allows remote attackers to obtain the installation path via the Host HTTP Header.
|
CWE-200
Information Exposure
|
CVE-2012-3829
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292842
|
- |
|
joomla
|
joomla\!
|
Cross-site scripting (XSS) vulnerability in Joomla! 2.5.3 allows remote attackers to inject arbitrary web script or HTML via the Host HTTP Header.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3828
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292843
|
- |
|
avaya
|
ip_office_customer_call_reporter
|
Unrestricted file upload vulnerability in ImageUpload.ashx in the Wallboard application in Avaya IP Office Customer Call Reporter 7.0 before 7.0.5.8 Q1 2012 Maintenance Release and 8.0 before 8.0.9.1…
|
NVD-CWE-Other
|
CVE-2012-3811
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292844
|
- |
|
wireshark
|
wireshark
|
Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vul…
|
CWE-189
Numeric Errors
|
CVE-2012-3826
|
2024-11-21 10:41 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292845
|
- |
|
wireshark
|
wireshark
|
Multiple integer overflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) BACapp and (2) Bl…
|
CWE-189
Numeric Errors
|
CVE-2012-3825
|
2024-11-21 10:41 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292846
|
- |
|
mikel_olasagasti
|
revelation
|
The fpm exporter in Revelation 0.4.13-2 and earlier encrypts the version number but not the password when exporting a file, which might allow local users to obtain sensitive information.
|
CWE-310
Cryptographic Issues
|
CVE-2012-3818
|
2024-11-21 10:41 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292847
|
- |
|
winradius
|
winradius
|
WinRadius Server 2009 allows remote attackers to cause a denial of service (crash) via a long password in an Access-Request packet.
|
NVD-CWE-noinfo
|
CVE-2012-3816
|
2024-11-21 10:41 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292848
|
- |
|
sielcosistemi
|
winlog_lite
winlog_pro
|
Buffer overflow in RunTime.exe in Sielco Sistemi Winlog Pro SCADA before 2.07.18 and Winlog Lite SCADA before 2.07.18 allows remote attackers to execute arbitrary code via a crafted packet to TCP por…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3815
|
2024-11-21 10:41 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292849
|
- |
|
pippin_williamson
|
font_uploader
|
Unrestricted file upload vulnerability in font-upload.php in the Font Uploader plugin 1.2.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file with a .php.ttf…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3814
|
2024-11-21 10:41 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292850
|
- |
|
peter_pokrivcak
|
post_affiliate_pro
|
Unspecified vulnerability in the Post Affiliate Pro (PAP) module for Drupal allows remote authenticated users to read the commissions of other users via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-3802
|
2024-11-21 10:41 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
