|
292721
|
- |
|
socialcms
|
socialcms
|
Multiple cross-site scripting (XSS) vulnerabilities in ajax/commentajax.php in SocialCMS 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) TREF_email_address or (2) TR_n…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1781
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292722
|
- |
|
socialcms
|
socialcms
|
SQL injection vulnerability in search.php in SocialCMS 1.0.5 allows remote attackers to execute arbitrary SQL commands via the category parameter.
|
CWE-89
SQL Injection
|
CVE-2012-1780
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292723
|
- |
|
idevspot
|
idev-businessdirectory
|
Cross-site scripting (XSS) vulnerability in IDevSpot idev-BusinessDirectory 3.0 allows remote attackers to inject arbitrary web script or HTML via the SEARCH parameter to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1779
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292724
|
- |
|
createvision
|
createvision_cms
|
SQL injection vulnerability in artykul_print.php in CreateVision CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-1778
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292725
|
- |
|
videolan
|
vlc_media_player
|
Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1776
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292726
|
- |
|
videolan
|
vlc_media_player
|
Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1 allows remote attackers to execute arbitrary code via a crafted MMS:// stream.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1775
|
2024-11-21 10:37 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292727
|
- |
|
gomlab
|
gom_media_player
|
Unspecified vulnerability in the Open URL feature in Gretech GOM Media Player before 2.1.39.5101 has unknown impact and attack vectors, a different vulnerability than CVE-2007-5779 and CVE-2012-1264.
|
NVD-CWE-noinfo
|
CVE-2012-1774
|
2024-11-21 10:37 |
2012-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292728
|
- |
|
vmware
|
vshield_manager
|
Cross-site request forgery (CSRF) vulnerability in VMware vShield Manager (vSM) 1.0.1 before Update 2 and 4.1.0 before Update 2 allows remote attackers to hijack the authentication of arbitrary users.
|
CWE-352
Origin Validation Error
|
CVE-2012-1514
|
2024-11-21 10:37 |
2012-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292729
|
- |
|
vmware
|
vcenter_orchestrator
|
The Web Configuration tool in VMware vCenter Orchestrator (vCO) 4.0 before Update 4, 4.1 before Update 2, and 4.2 before Update 1 places the vCenter Server password in an HTML document, which allows …
|
CWE-200
Information Exposure
|
CVE-2012-1513
|
2024-11-21 10:37 |
2012-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292730
|
- |
|
vmware
|
vsphere
|
Cross-site scripting (XSS) vulnerability in the internal browser in vSphere Client in VMware vSphere 4.1 before Update 2 and 5.0 before Update 1 allows remote attackers to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1512
|
2024-11-21 10:37 |
2012-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
