|
292141
|
- |
|
owncloud
|
owncloud
|
Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the r…
|
CWE-20
Improper Input Validation
|
CVE-2012-2270
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292142
|
- |
|
owncloud
|
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) an arbitrary field to apps/contacts/ajax/addcard.php…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2269
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292143
|
- |
|
ryan_walberg
|
php_gift_registry
|
SQL injection vulnerability in users.php in PHP Gift Registry 1.5.5 allows remote authenticated users to execute arbitrary SQL commands via the userid parameter in an edit action.
|
CWE-89
SQL Injection
|
CVE-2012-2236
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292144
|
- |
|
comodo
|
comodo_internet_security
|
Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service (system crash) via a crafted 32-bit Portable Executable (PE) file with a kernel Image…
|
CWE-94
Code Injection
|
CVE-2012-2273
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292145
|
- |
|
openssl
redhat
|
openssl
|
The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2110
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292146
|
- |
|
hp
|
system_management_homepage
|
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows local users to modify data or obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-1993
|
2024-11-21 10:38 |
2012-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292147
|
- |
|
f5
fedoraproject
|
nginx
fedora
|
Buffer overflow in ngx_http_mp4_module.c in the ngx_http_mp4_module module in nginx 1.0.7 through 1.0.14 and 1.1.3 through 1.1.18, when the mp4 directive is used, allows remote attackers to cause a d…
|
CWE-120
Classic Buffer Overflow
|
CVE-2012-2089
|
2024-11-21 10:38 |
2012-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292148
|
- |
|
syndeocms
|
syndeocms
|
Cross-site scripting (XSS) vulnerability in starnet/index.php in SyndeoCMS 3.0.01 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the email parameter (aka Ema…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1979
|
2024-11-21 10:38 |
2012-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292149
|
- |
|
realnetworks
|
helix_server
helix_mobile_server
|
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service (unhandled exception and daemon crash)…
|
CWE-20
Improper Input Validation
|
CVE-2012-2268
|
2024-11-21 10:38 |
2012-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292150
|
- |
|
realnetworks
|
helix_server
helix_mobile_server
|
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service (daemon crash) by establishing and clo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2267
|
2024-11-21 10:38 |
2012-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
