|
290721
|
- |
|
cisco
|
prime_data_center_network_manager
|
Cisco Prime Data Center Network Manager (DCNM) before 6.1(1) does not properly restrict access to certain JBoss MainDeployer functionality, which allows remote attackers to execute arbitrary commands…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5417
|
2024-11-21 10:44 |
2012-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290722
|
- |
|
cisco
|
unified_meetingplace
|
Buffer overflow in Cisco Unified MeetingPlace Web Conferencing before 7.1MR1 Patch 1, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 allows remote attackers to cause a denial of service (daemon han…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5416
|
2024-11-21 10:44 |
2012-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290723
|
- |
|
siemens
|
sipass_integrated
|
AscoServer.exe in the server in Siemens SiPass integrated MP2.6 and earlier does not properly handle IOCP RPC messages received over an Ethernet network, which allows remote attackers to write data t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5409
|
2024-11-21 10:44 |
2012-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290724
|
- |
|
videolan
|
vlc_media_player
|
libpng_plugin in VideoLAN VLC media player 2.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted PNG file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5470
|
2024-11-21 10:44 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290725
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 3.5.x before 3.5.3 uses JavaScript code that is obtained through an HTTP session to phpmyadmin.net without SSL, which allows man-in-the-middle attackers to conduct cross-site scripting (XS…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5368
|
2024-11-21 10:44 |
2012-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290726
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.3 allow remote authenticated users to inject arbitrary web script or HTML via a crafted name of (1) an event, (2) a …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5339
|
2024-11-21 10:44 |
2012-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290727
|
- |
|
zoner
|
zoner_antivirus_free
|
The Zoner AntiVirus Free application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field of the X.509 certificate, which allows man-in-t…
|
CWE-310
Cryptographic Issues
|
CVE-2012-5456
|
2024-11-21 10:44 |
2012-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290728
|
- |
|
videousermanuals
|
white-label-cms
|
Cross-site scripting (XSS) vulnerability in wlcms-plugin.php in the White Label CMS plugin 1.5 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5388
|
2024-11-21 10:44 |
2012-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290729
|
- |
|
videousermanuals
|
white-label-cms
|
Cross-site request forgery (CSRF) vulnerability in wlcms-plugin.php in the White Label CMS plugin before 1.5.1 for WordPress allows remote attackers to hijack the authentication of administrators for…
|
CWE-352
Origin Validation Error
|
CVE-2012-5387
|
2024-11-21 10:44 |
2012-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290730
|
- |
|
tibco
|
formvine
|
The server in TIBCO Formvine 3.1.x and 3.2.x before 3.2.1 does not properly implement access control, which allows remote attackers to obtain sensitive information or modify data via unspecified vect…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5302
|
2024-11-21 10:44 |
2012-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
