|
296701
|
- |
|
ibm
|
websphere_commerce
|
Unspecified vulnerability in the web services framework in IBM WebSphere Commerce 6.0 through 6.0.0.11 and 7.0 through 7.0.0.6 allows remote attackers to cause a denial of service (login outage) via …
|
NVD-CWE-noinfo
|
CVE-2012-4855
|
2024-11-21 10:43 |
2013-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296702
|
- |
|
ibm
|
cognos_business_intelligence
|
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 does not properly validate Java serialized input, which allows remote attackers to exec…
|
CWE-20
Improper Input Validation
|
CVE-2012-4858
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296703
|
- |
|
ibm
|
cognos_business_intelligence
|
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote attackers to conduct XPath injection attacks, and call XPath extension fu…
|
CWE-94
Code Injection
|
CVE-2012-4840
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296704
|
- |
|
ibm
|
cognos_business_intelligence
|
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote authenticated users to conduct XPath injection attacks, and read arbitrar…
|
CWE-200
Information Exposure
|
CVE-2012-4837
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296705
|
- |
|
ibm
|
cognos_business_intelligence
|
Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote authenticated users to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4836
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296706
|
- |
|
ibm
|
cognos_business_intelligence
|
Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote attackers to inject arbitrary…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4835
|
2024-11-21 10:43 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296707
|
- |
|
linux
|
linux_kernel
|
block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restricti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4542
|
2024-11-21 10:43 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296708
|
- |
|
ibm
|
lotus_domino
|
Cross-site scripting (XSS) vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-4844
|
2024-11-21 10:43 |
2013-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296709
|
- |
|
ibm
|
lotus_domino
|
Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vec…
|
CWE-399
Resource Management Errors
|
CVE-2012-4842
|
2024-11-21 10:43 |
2013-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296710
|
- |
|
apache
|
http_server
|
Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x …
|
CWE-79
Cross-site Scripting
|
CVE-2012-4558
|
2024-11-21 10:43 |
2013-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
