|
291811
|
- |
|
ibm
|
xiv_storage_system_gen3_firmware
xiv_storage_system_gen3
|
The IBM XIV Storage System Gen3 before 11.1.0.a allows remote attackers to cause a denial of service (device outage) via TCP packets to unspecified ports.
|
NVD-CWE-noinfo
|
CVE-2012-2167
|
2024-11-21 10:38 |
2012-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291812
|
- |
|
emc
|
networker_module_for_microsoft_applications
|
The client in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375 allows remote attackers to execute arbitrary code by sending a crafted messag…
|
CWE-94
Code Injection
|
CVE-2012-2290
|
2024-11-21 10:38 |
2012-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291813
|
- |
|
emc
|
networker_module_for_microsoft_applications
|
The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local use…
|
CWE-255
Credentials Management
|
CVE-2012-2284
|
2024-11-21 10:38 |
2012-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291814
|
- |
|
emc
|
rsa_adaptive_authentication_on-premise
|
Unspecified vulnerability in EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 before SP3 P3 allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-2286
|
2024-11-21 10:38 |
2012-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291815
|
- |
|
ivano_binetti
|
wolf_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in wolfcms/admin/user/add in Wolf CMS 0.75 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user[name], (2) us…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1898
|
2024-11-21 10:38 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291816
|
- |
|
wolfcms
|
wolf_cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Wolf CMS 0.75 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) delete users via th…
|
CWE-352
Origin Validation Error
|
CVE-2012-1897
|
2024-11-21 10:38 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291817
|
- |
|
devscripts_devel_team
|
devscripts
|
scripts/dget.pl in devscripts before 2.10.73 allows remote attackers to execute arbitrary commands via a crafted (1) .dsc or (2) .changes file, related to "arguments to external commands" that are no…
|
CWE-20
Improper Input Validation
|
CVE-2012-2242
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291818
|
- |
|
devscripts_devel_team
|
devscripts
|
scripts/dget.pl in devscripts before 2.12.3 allows remote attackers to delete arbitrary files via a crafted (1) .dsc or (2) .changes file, probably related to a NULL byte in a filename.
|
CWE-20
Improper Input Validation
|
CVE-2012-2241
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291819
|
- |
|
devscripts_devel_team
|
devscripts
|
scripts/dscverify.pl in devscripts before 2.12.3 allows remote attackers to execute arbitrary commands via unspecified vectors related to "arguments to external commands."
|
CWE-20
Improper Input Validation
|
CVE-2012-2240
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291820
|
- |
|
drupal
|
drupal
|
Drupal 7.x before 7.14 does not properly restrict access to nodes in a list when using a "contributed node access module," which allows remote authenticated users with the "Access the content overvie…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2153
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
