|
292951
|
- |
|
manageengine
|
applications_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Applications Manager 9.x and 10.x allow remote attackers to inject arbitrary web script or HTML via the (1) period parameter to sho…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1062
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292952
|
- |
|
gforgegroup
|
gforge
|
SQL injection vulnerability in GForge Advanced Server 6.0.0 and other versions before 6.0.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-1061
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292953
|
- |
|
rik_de_boer
|
revisioning
|
Multiple cross-site scripting (XSS) vulnerabilities in revisioning_theme.inc in the Taxonomy module in the Revisioning module 6.x-3.13 and other versions before 6.x-3.14 for Drupal allow remote authe…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1060
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292954
|
- |
|
oscommerce
|
online_merchant
|
Cross-site scripting (XSS) vulnerability in osCommerce/OM/Core/Site/Shop/Application/Cart/pages/main.php in OSCommerce Online Merchant 3.0.2 allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1059
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292955
|
- |
|
flyspray
|
flyspray
|
Cross-site request forgery (CSRF) vulnerability in Flyspray 0.9.9.6 allows remote attackers to hijack the authentication of admins for requests that add admin accounts via an admin.newuser action to …
|
CWE-352
Origin Validation Error
|
CVE-2012-1058
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292956
|
- |
|
sean_robertson
|
forward
|
Cross-site request forgery (CSRF) vulnerability in the clickthrough tracking functionality in the Forward module 6.x-1.x before 6.x-1.21 and 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers …
|
CWE-352
Origin Validation Error
|
CVE-2012-1057
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292957
|
- |
|
sean_robertson
|
forward
|
The Forward module 6.x-1.x before 6.x-1.21 and 7.x-1.x before 7.x-1.3 for Drupal does not properly enforce permissions for (1) Recent forwards, (2) Most forwarded, or (3) Dynamic blocks, which allows…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1056
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292958
|
- |
|
pl32
|
photoline
|
Heap-based buffer overflow in PhotoLine 17.01 and possibly other versions before 17.02 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1055
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292959
|
- |
|
ivanview
|
ivanview
|
Buffer overflow in IvanView 1.2.15 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1052
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292960
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in Xjp2.dll in the JPEG2000 plug-in in XnView 1.98.5 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) m…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1051
|
2024-11-21 10:36 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
