|
292001
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
seamonkey
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and S…
|
NVD-CWE-noinfo
|
CVE-2012-1948
|
2024-11-21 10:38 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292002
|
- |
|
emc
|
celerra_network_server
vnx
vnxe
|
EMC Celerra Network Server 6.x before 6.0.61.0, VNX 7.x before 7.0.53.2, and VNXe 2.0 and 2.1 before 2.1.3.19077 (aka MR1 SP3.2) and 2.2 before 2.2.0.19078 (aka MR2 SP0.2) do not properly implement N…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2282
|
2024-11-21 10:38 |
2012-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292003
|
- |
|
hp
|
assetmanager
|
Multiple cross-site scripting (XSS) vulnerabilities in HP AssetManager 5.20, 5.21, 5.22, and 9.30 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2021
|
2024-11-21 10:38 |
2012-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292004
|
- |
|
rsa
emc
|
authentication_manager
rsa_authentication_manager
securid_appliance
|
EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 do not properly use frames, which allows remote attackers to inject arbitrary web script or HTML via uns…
|
NVD-CWE-Other
|
CVE-2012-2280
|
2024-11-21 10:38 |
2012-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292005
|
- |
|
rsa
emc
|
authentication_manager
rsa_authentication_manager
securid_appliance
|
Open redirect vulnerability in the Security Console in EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before SP4 P14 allows remote attackers to redirect users to arbi…
|
CWE-20
Improper Input Validation
|
CVE-2012-2279
|
2024-11-21 10:38 |
2012-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292006
|
- |
|
rsa
emc
|
authentication_manager
rsa_authentication_manager
securid_appliance
|
Multiple cross-site scripting (XSS) vulnerabilities in the (1) Self-Service Console and (2) Security Console in EMC RSA Authentication Manager 7.1 before SP4 P14 and RSA SecurID Appliance 3.0 before …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2278
|
2024-11-21 10:38 |
2012-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292007
|
- |
|
debian
mahara
|
debian_linux
mahara
|
The default configuration of the auth/saml plugin in Mahara before 1.4.2 sets the "Match username attribute to Remote username" option to false, which allows remote SAML IdP servers to spoof users of…
|
CWE-287
CWE-16
CWE-284
Improper Authentication
Configuration
Improper Access Control
|
CVE-2012-2351
|
2024-11-21 10:38 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292008
|
- |
|
hp
|
operations_agent
|
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1326.
|
NVD-CWE-noinfo
|
CVE-2012-2020
|
2024-11-21 10:38 |
2012-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292009
|
- |
|
hp
|
operations_agent
|
Unspecified vulnerability in HP Operations Agent before 11.03.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1325.
|
NVD-CWE-noinfo
|
CVE-2012-2019
|
2024-11-21 10:38 |
2012-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292010
|
- |
|
apache
|
org.apache.sling.servlets.post
|
The @CopyFrom operation in the POST servlet in the org.apache.sling.servlets.post bundle before 2.1.2 in Apache Sling does not prevent attempts to copy an ancestor node to a descendant node, which al…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2138
|
2024-11-21 10:38 |
2012-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
