|
291801
|
- |
|
openldap
|
openldap
|
libraries/libldap/tls_m.c in OpenLDAP, possibly 2.4.31 and earlier, when using the Mozilla NSS backend, always uses the default cipher suite even when TLSCipherSuite is set, which might cause OpenLDA…
|
CWE-200
Information Exposure
|
CVE-2012-2668
|
2024-11-21 10:39 |
2012-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291802
|
- |
|
dlitz
|
pycrypto
|
PyCrypto before 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for attackers …
|
CWE-310
Cryptographic Issues
|
CVE-2012-2417
|
2024-11-21 10:39 |
2012-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291803
|
- |
|
michael_dehaan
|
cobbler
|
Incomplete blacklist vulnerability in action_power.py in Cobbler 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) username or (2) password fields to the…
|
NVD-CWE-Other
|
CVE-2012-2395
|
2024-11-21 10:39 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291804
|
- |
|
dolphin-browser
|
dolphin_browser_hd
dolphin_for_pad
|
The Dolphin Browser HD application before 7.6 and Dolphin for Pad application before 1.0.1 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2012-2635
|
2024-11-21 10:39 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291805
|
- |
|
newsgator
|
feeddemon
|
Cross-site scripting (XSS) vulnerability in FeedDemon before 4.0, when the feed preview option is enabled, allows remote attackers to inject arbitrary web script or HTML via a feed.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2634
|
2024-11-21 10:39 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291806
|
- |
|
wordpress
|
wassup_plugin
|
Cross-site scripting (XSS) vulnerability in wassup.php in the WassUp plugin before 1.8.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2633
|
2024-11-21 10:39 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291807
|
- |
|
seil
|
b1_firmware
x2
b1
x1
x86_firmware
|
SEIL routers with firmware SEIL/x86 1.00 through 2.35, SEIL/X1 2.30 through 3.75, SEIL/X2 2.30 through 3.75, and SEIL/B1 2.30 through 3.75, when the http-proxy and application-gateway features are en…
|
NVD-CWE-Other
|
CVE-2012-2632
|
2024-11-21 10:39 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291808
|
- |
|
atmarkweb
|
\@web_shoppingcart_t
\@web_shoppingcart
|
Cross-site scripting (XSS) vulnerability in WEBLOGIC @WEB ShoppingCart before 1.5.2.0, and @WEB ShoppingCart T 1.5.0.1 and earlier, allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2631
|
2024-11-21 10:39 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291809
|
- |
|
bradfordnetworks
|
network_sentry_appliance_software
network_sentry_appliance
|
The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages, which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted p…
|
CWE-287
Improper Authentication
|
CVE-2012-2606
|
2024-11-21 10:39 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291810
|
- |
|
bradfordnetworks
|
network_sentry_appliance_software
network_sentry_appliance
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Bradford Network Sentry before 5.3.3 allow remote attackers to hijack the authentication of administrator…
|
CWE-352
Origin Validation Error
|
CVE-2012-2605
|
2024-11-21 10:39 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
