|
290121
|
- |
|
typo3
|
typo3
|
Cross-site scripting (XSS) vulnerability in the tree render API (TCA-Tree) in the Backend API in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated bac…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6147
|
2024-11-21 10:45 |
2013-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290122
|
- |
|
typo3
|
typo3
|
Cross-site scripting (XSS) vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6145
|
2024-11-21 10:45 |
2013-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290123
|
- |
|
typo3
|
typo3
|
SQL injection vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to execute arbitrary SQL …
|
CWE-89
SQL Injection
|
CVE-2012-6144
|
2024-11-21 10:45 |
2013-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290124
|
- |
|
redhat
|
enterprise_linux_long_life
enterprise_linux
enterprise_linux_server_eus
enterprise_linux_eus
enterprise_linux_server_aus
enterprise_linux_desktop
enterprise_linux_server
enterpri…
|
rhn-migrate-classic-to-rhsm tool in Red Hat subscription-manager does not verify the Red Hat Network Classic server's X.509 certificate when migrating to a Certificate-based Red Hat Network, which al…
|
CWE-255
Credentials Management
|
CVE-2012-6137
|
2024-11-21 10:45 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290125
|
- |
|
zend
|
zend_framework
|
The (1) Zend_Feed_Rss and (2) Zend_Feed_Atom classes in Zend_Feed in Zend Framework 1.11.x before 1.11.15 and 1.12.x before 1.12.1 allow remote attackers to read arbitrary files, send HTTP requests t…
|
CWE-200
Information Exposure
|
CVE-2012-5657
|
2024-11-21 10:45 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290126
|
- |
|
ibm
|
spss_samplepower
|
Buffer overflow in the vsflex7l ActiveX control in IBM SPSS SamplePower 3.0 before FP1 allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5947
|
2024-11-21 10:45 |
2013-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290127
|
- |
|
ibm
|
spss_samplepower
|
Buffer overflow in the c1sizer ActiveX control in C1sizer.ocx in IBM SPSS SamplePower 3.0 before FP1 allows remote attackers to execute arbitrary code via a long TabCaption string.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5946
|
2024-11-21 10:45 |
2013-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290128
|
- |
|
ibm
|
spss_samplepower
|
Multiple buffer overflows in the Vsflex8l ActiveX control in IBM SPSS SamplePower 3.0 before FP1 allow remote attackers to execute arbitrary code via a long (1) ComboList or (2) ColComboList property…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5945
|
2024-11-21 10:45 |
2013-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290129
|
- |
|
google
|
authenticator
|
pam_google_authenticator.c in the PAM module in Google Authenticator before 1.0 requires user-readable permissions for the secret file, which allows local users to bypass intended access restrictions…
|
CWE-200
Information Exposure
|
CVE-2012-6140
|
2024-11-21 10:45 |
2013-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290130
|
- |
|
ibm
|
tririga_application_platform
|
Multiple cross-site request forgery (CSRF) vulnerabilities in IBM TRIRIGA Application Platform 2.x and 3.x before 3.3, and 8, allow remote attackers to hijack the authentication of arbitrary users fo…
|
CWE-352
Origin Validation Error
|
CVE-2012-5950
|
2024-11-21 10:45 |
2013-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
