|
292671
|
- |
|
bernhard_wymann
speed-dreams
|
torcs
speed_dreams
|
Stack-based buffer overflow in modules/graphic/ssgraph/grsound.cpp in The Open Racing Car Simulator (TORCS) before 1.3.3 and Speed Dreams allows user-assisted remote attackers to execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1189
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292672
|
- |
|
kishore_asokan
|
kish_guest_posting_plugin
|
Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin before 1.2 for WordPress allows remote attackers to execute arbitrary code by uploading a fi…
|
NVD-CWE-Other
|
CVE-2012-1125
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292673
|
- |
|
plume-cms
|
plume_cms
|
Cross-site request forgery (CSRF) vulnerability in manager/news.php in Plume CMS 1.2.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that create News…
|
CWE-352
Origin Validation Error
|
CVE-2012-1414
|
2024-11-21 10:36 |
2012-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292674
|
- |
|
apprain
|
apprain
|
Unrestricted file upload vulnerability in addons/uploadify/uploadify.php in appRain CMF 0.1.5 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable exte…
|
NVD-CWE-Other
|
CVE-2012-1153
|
2024-11-21 10:36 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292675
|
- |
|
impresscms
|
impresscms
|
Directory traversal vulnerability in edituser.php in ImpressCMS 1.2.x before 1.2.7 Final and 1.3.x before 1.3.1 Final allows remote authenticated users to include and execute arbitrary local files vi…
|
CWE-22
Path Traversal
|
CVE-2012-0987
|
2024-11-21 10:36 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292676
|
- |
|
impresscms
|
impresscms
|
Multiple cross-site scripting (XSS) vulnerabilities in ImpressCMS 1.2.x before 1.2.7 Final and 1.3.x before 1.3.1 Final allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0986
|
2024-11-21 10:36 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292677
|
- |
|
python
|
python
|
Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dep…
|
CWE-310
Cryptographic Issues
|
CVE-2012-1150
|
2024-11-21 10:36 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292678
|
- |
|
oneorzero
|
action_and_information_management_system
|
Cross-site scripting (XSS) vulnerability in OneOrZero AIMS 2.8.0 Trial Edition build231211 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to ind…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0989
|
2024-11-21 10:36 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292679
|
- |
|
ubiquity_slideshow_team
|
ubiquity-slideshow-ubuntu
|
ubiquity-slideshow-ubuntu before 58.2, during installation, allows remote man-in-the-middle attackers to execute arbitrary web script or HTML and read arbitrary files via a crafted attribute in the <…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0956
|
2024-11-21 10:36 |
2012-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292680
|
- |
|
fork-cms
|
fork_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Fork CMS before 3.2.7 allow remote attackers to inject arbitrary web script or HTML via the (1) type or (2) querystring parameters to private/en…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1188
|
2024-11-21 10:36 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
