|
301471
|
- |
|
ps_project_management_team
|
unity-firefox-extension
|
content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtai…
|
NVD-CWE-Other
|
CVE-2012-0958
|
2024-11-21 10:36 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301472
|
- |
|
linux
|
linux_kernel
|
The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with…
|
CWE-16
Configuration
|
CVE-2012-0957
|
2024-11-21 10:36 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301473
|
- |
|
ps_project_management_team
|
unity-firefox-extension
|
Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possi…
|
CWE-20
Improper Input Validation
|
CVE-2012-0960
|
2024-11-21 10:36 |
2012-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301474
|
- |
|
remote_login_service_hackers
|
remote_login_service
|
Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials.
|
CWE-200
Information Exposure
|
CVE-2012-0959
|
2024-11-21 10:36 |
2012-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301475
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_soa_platform
jboss_enterprise_web_platform
jboss_enterprise_brms_platform
|
The JBoss Server in JBoss Enterprise Application Platform 5.1.x before 5.1.2 and 5.2.x before 5.2.2, Web Platform before 5.1.2, BRMS Platform before 5.3.0, and SOA Platform before 5.3.0, when the ser…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1167
|
2024-11-21 10:36 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301476
|
- |
|
redhat
|
mod_cluster
jboss_enterprise_application_platform
|
mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1154
|
2024-11-21 10:36 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301477
|
- |
|
socialcms
|
socialcms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in SocialCMS 1.0.2 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrator accounts vi…
|
CWE-352
Origin Validation Error
|
CVE-2012-1416
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301478
|
- |
|
dlink
|
dsl-2640b_firmware
dsl-2640b
|
Cross-site request forgery (CSRF) vulnerability in redpass.cgi in D-Link DSL-2640B Firmware EU_4.00 allows remote attackers to hijack the authentication of administrators for requests that change the…
|
CWE-352
Origin Validation Error
|
CVE-2012-1308
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301479
|
- |
|
bernhard_wymann
speed-dreams
|
torcs
speed_dreams
|
Stack-based buffer overflow in modules/graphic/ssgraph/grsound.cpp in The Open Racing Car Simulator (TORCS) before 1.3.3 and Speed Dreams allows user-assisted remote attackers to execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1189
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301480
|
- |
|
kishore_asokan
|
kish_guest_posting_plugin
|
Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin before 1.2 for WordPress allows remote attackers to execute arbitrary code by uploading a fi…
|
NVD-CWE-Other
|
CVE-2012-1125
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
