|
293911
|
- |
|
redcloth
debian
|
redcloth_library
debian_linux
|
Cross-site scripting (XSS) vulnerability in the RedCloth library 4.2.9 for Ruby and earlier allows remote attackers to inject arbitrary web script or HTML via a javascript: URI.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6684
|
2024-11-21 10:46 |
2015-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293912
|
- |
|
debian
canonical
gnu
|
debian_linux
ubuntu_linux
glibc
|
iconvdata/ibm930.c in GNU C Library (aka glibc) before 2.16 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a multibyte character value of "0xffff" to the ico…
|
CWE-20
Improper Input Validation
|
CVE-2012-6656
|
2024-11-21 10:46 |
2014-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293913
|
- |
|
redhat
jqueryui
|
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
jquery_ui
|
Cross-site scripting (XSS) vulnerability in the default content option in jquery.ui.tooltip.js in the Tooltip widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2012-6662
|
2024-11-21 10:46 |
2014-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293914
|
- |
|
phpmoneybooks
|
phpmoneybooks
|
Directory traversal vulnerability in index.php in phpMoneyBooks 1.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter, a different vulnerability than CVE-2012…
|
CWE-22
Path Traversal
|
CVE-2012-6665
|
2024-11-21 10:46 |
2014-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293915
|
- |
|
plone
zope
|
plone
zope
|
Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, does not reseed the pseudo-random number generator (PRNG), which makes it easier for remote attackers to guess the value via …
|
CWE-310
Cryptographic Issues
|
CVE-2012-6661
|
2024-11-21 10:46 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293916
|
- |
|
tp-link
|
tl-wr841n_firmware
tl-wr841n
|
Multiple cross-site scripting (XSS) vulnerabilities in the TP-LINK TL-WR841N router with firmware 3.13.9 Build 120201 Rel.54965n and earlier allow remote administrators to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6316
|
2024-11-21 10:46 |
2014-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293917
|
- |
|
linux
novell
|
linux_kernel
suse_linux_enterprise_server
|
The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure that a keepalive action is associated with a stream socket, which allows local users to cause a denial…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6657
|
2024-11-21 10:46 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293918
|
- |
|
phorum
|
phorum
|
Cross-site scripting (XSS) vulnerability in the admin interface in Phorum before 5.2.19 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6659
|
2024-11-21 10:46 |
2014-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293919
|
- |
|
spiceworks
|
spiceworks
|
Multiple cross-site scripting (XSS) vulnerabilities in SpiceWorks 5.3.75941 allow remote attackers to inject arbitrary web script or HTML via the (1) syslocation, (2) syscontact, or (3) sysName confi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6658
|
2024-11-21 10:46 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293920
|
- |
|
zpanelcp
|
zpanel
|
Multiple SQL injection vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) resetkey or (2) inConfEmail parameter to index.php, a differen…
|
CWE-89
SQL Injection
|
CVE-2012-6654
|
2024-11-21 10:46 |
2014-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
