|
291851
|
- |
|
brian_altenhofel
|
slidebox
|
The Slidebox module before 7.x-1.4 for Drupal does not properly check permissions, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2063
|
2024-11-21 10:38 |
2012-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291852
|
- |
|
buddypress
|
buddypress
|
SQL injection vulnerability in wp-load.php in the BuddyPress plugin 1.5.x before 1.5.5 of WordPress allows remote attackers to execute arbitrary SQL commands via the page parameter in an activity_wid…
|
CWE-89
SQL Injection
|
CVE-2012-2109
|
2024-11-21 10:38 |
2012-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291853
|
- |
|
emc
|
networker
|
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specif…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-2288
|
2024-11-21 10:38 |
2012-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291854
|
- |
|
yaniv_aran-shamir
|
gigya
|
Cross-site scripting (XSS) vulnerability in the Gigya - Social optimization module 6.x before 6.x-3.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2117
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291855
|
- |
|
commerceguys
|
commerce_reorder
|
Cross-site request forgery (CSRF) vulnerability in the Commerce Reorder module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of arbitrary users for requests that add …
|
CWE-352
Origin Validation Error
|
CVE-2012-2116
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291856
|
- |
|
etalabs
|
musl
|
Stack-based buffer overflow in fprintf in musl before 0.8.8 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2114
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291857
|
- |
|
fusiondrupalthemes
|
fusion
|
Cross-site scripting (XSS) vulnerability in the fusion_core_preprocess_page function in fusion_core/template.php in the Fusion module before 6.x-1.13 for Drupal allows remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2083
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291858
|
- |
|
asterisk
sangoma
|
open_source
asterisk
certified_asterisk
digiumphones
business_edition
|
Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert6, Asterisk Digiumphones 10.x.x-…
|
NVD-CWE-Other
|
CVE-2012-2186
|
2024-11-21 10:38 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291859
|
- |
|
emc
|
cloud_tiering_appliance_virtual_edition
cloud_tiering_appliance
|
EMC Cloud Tiering Appliance (aka CTA, formerly FMA) 9.0 and earlier, and Cloud Tiering Appliance Virtual Edition (CTA/VE) 9.0 and earlier, allows remote attackers to obtain GUI administrative access …
|
CWE-287
Improper Authentication
|
CVE-2012-2285
|
2024-11-21 10:38 |
2012-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291860
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 15.0, Thunderbird before 15.0, and SeaMonkey before 2.12 allow remote attackers to cause a denial of service (memo…
|
NVD-CWE-noinfo
|
CVE-2012-1971
|
2024-11-21 10:38 |
2012-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
