|
290551
|
- |
|
bit51
|
better-wp-security
|
Multiple cross-site scripting (XSS) vulnerabilities in the Better WP Security (better_wp_security) plugin before 3.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2012-4264
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290552
|
- |
|
bit51
|
better-wp-security
|
Cross-site scripting (XSS) vulnerability in inc/admin/content.php in the Better WP Security (better_wp_security) plugin before 3.2.5 for WordPress allows remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4263
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290553
|
- |
|
hccgmbh
|
mycare2x
|
Multiple cross-site scripting (XSS) vulnerabilities in myCare2x allow remote attackers to inject arbitrary web script or HTML via the (1) name_last, (2) name_first, (3) name_middle, or (4) name_maide…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4262
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290554
|
- |
|
hccgmbh
|
mycare2x
|
SQL injection vulnerability in modules/patient/mycare2x_pat_info.php in myCare2x allows remote attackers to execute arbitrary SQL commands via the lang parameter.
|
CWE-89
SQL Injection
|
CVE-2012-4261
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290555
|
- |
|
hccgmbh
|
mycare2x
|
Multiple SQL injection vulnerabilities in myCare2x allow remote attackers to execute arbitrary SQL commands via the (1) aktion or (2) callurl parameter to modules/patient/mycare2x_pat_info.php; (3) d…
|
CWE-89
SQL Injection
|
CVE-2012-4260
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290556
|
- |
|
c4b
|
xphone_unified_communications_2011
|
Cross-site scripting (XSS) vulnerability in the contacts in (1) XPhone UC Web and the (2) web frontend for XPhone Virtual Directory in C4B XPhone Unified Communications (UC) 2011 Web 4.1.890S R1 allo…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4259
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290557
|
- |
|
myrephp
|
myre_real_estate_software
|
Multiple SQL injection vulnerabilities in MYRE Real Estate Software (2012 Q2) allow remote attackers to execute arbitrary SQL commands via the (1) link_idd parameter to 1_mobile/listings.php or (2) u…
|
CWE-89
SQL Injection
|
CVE-2012-4258
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290558
|
- |
|
george_karpouzas
|
yet_another_question_\&_answer_system
|
Yaqas (Yet Another Question & Answer System) 1.0 Alpha 1 allows remote attackers to obtain sensitive information via an invalid character in the PHPSESSID, which reveals the installation path in an e…
|
CWE-200
Information Exposure
|
CVE-2012-4257
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290559
|
- |
|
joobi
|
com_jnews
|
The jNews (com_jnews) component 7.5.1 for Joomla! allows remote attackers to obtain sensitive information via the emailsearch parameter, which reveals the installation path in an error message.
|
CWE-200
Information Exposure
|
CVE-2012-4256
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290560
|
- |
|
mysqldumper
|
mysqldumper
|
MySQLDumper 1.24.4 allows remote attackers to obtain sensitive information via a direct request to learn/cubemail/refresh_dblist.php, which reveals the installation path in an error message.
|
CWE-200
Information Exposure
|
CVE-2012-4255
|
2024-11-21 10:42 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
