|
289471
|
- |
|
concrete5
|
concrete5
|
Cross-site scripting (XSS) vulnerability in concrete5 Japanese 5.5.1 through 5.5.2.1 and concrete5 English 5.5.0 through 5.6.0.2 allows remote attackers to inject arbitrary web script or HTML via uns…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5181
|
2024-11-21 10:44 |
2012-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289472
|
- |
|
linux
|
linux_kernel
|
The online_pages function in mm/memory_hotplug.c in the Linux kernel before 3.6 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecifie…
|
NVD-CWE-Other
|
CVE-2012-5517
|
2024-11-21 10:44 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289473
|
- |
|
phpmyadmin
|
phpmyadmin
|
The Portable phpMyAdmin plugin before 1.3.1 for WordPress allows remote attackers to bypass authentication and obtain phpMyAdmin console access via a direct request to wp-content/plugins/portable-php…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5469
|
2024-11-21 10:44 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289474
|
- |
|
welcart
|
welcart_plugin
|
Cross-site request forgery (CSRF) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that complete a p…
|
CWE-352
Origin Validation Error
|
CVE-2012-5178
|
2024-11-21 10:44 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289475
|
- |
|
welcart
|
welcart_plugin
|
Cross-site scripting (XSS) vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5177
|
2024-11-21 10:44 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289476
|
- |
|
redhat
|
openshift
|
Cross-site request forgery (CSRF) vulnerability in the management console (openshift-console/app/controllers/application_controller.rb) in OpenShift 0.0.5 allows remote attackers to hijack the authen…
|
CWE-352
Origin Validation Error
|
CVE-2012-5622
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289477
|
- |
|
owncloud
|
owncloud
|
Incomplete blacklist vulnerability in lib/filesystem.php in ownCloud before 4.0.9 and 4.5.x before 4.5.2 allows remote authenticated users to execute arbitrary PHP code by uploading a file with a spe…
|
CWE-20
Improper Input Validation
|
CVE-2012-5610
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289478
|
- |
|
owncloud
|
owncloud
|
Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.5.2 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted mount.php file in a ZIP file.
|
NVD-CWE-Other
|
CVE-2012-5609
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289479
|
- |
|
owncloud
|
owncloud
|
Cross-site scripting (XSS) vulnerability in apps/user_webdavauth/settings.php in ownCloud 4.5.x before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via arbitrary POST paramete…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5608
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289480
|
- |
|
owncloud
|
owncloud
|
The "Lost Password" reset functionality in ownCloud before 4.0.9 and 4.5.0 does not properly check the security token, which allows remote attackers to change an accounts password via unspecified vec…
|
CWE-255
Credentials Management
|
CVE-2012-5607
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
