|
289031
|
- |
|
rack_project
|
rack
|
lib/rack/multipart.rb in Rack before 1.1.4, 1.2.x before 1.2.6, 1.3.x before 1.3.7, and 1.4.x before 1.4.2 uses an incorrect regular expression, which allows remote attackers to cause a denial of ser…
|
NVD-CWE-Other
|
CVE-2012-6109
|
2024-11-21 10:45 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289032
|
- |
|
ibm
|
ts3500_tape_library_firmware
ts3500_tape_library
|
Unspecified vulnerability in the web interface on the IBM TS3500 Tape Library with firmware before C260 allows remote authenticated users to gain privileges via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5767
|
2024-11-21 10:45 |
2013-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289033
|
- |
|
cloudbees
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6074
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289034
|
- |
|
cloudbees
jenkins
|
jenkins
|
Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remot…
|
CWE-20
Improper Input Validation
|
CVE-2012-6073
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289035
|
- |
|
cloudbees
jenkins
|
jenkins
|
CRLF injection vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remo…
|
CWE-20
Improper Input Validation
|
CVE-2012-6072
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289036
|
- |
|
redhat
|
openshift
openshift_origin
|
rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain …
|
CWE-310
Cryptographic Issues
|
CVE-2012-5658
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289037
|
- |
|
roundcube
|
webmail
|
Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 0.8.5 allows remote attackers to inject arbitrary web script or HTML via a (1) data:text or (2) vbscript link.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6121
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289038
|
- |
|
redhat
|
openshift_origin
openshift
|
Open redirect vulnerability in node-util/www/html/restorer.php in Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks…
|
CWE-20
Improper Input Validation
|
CVE-2012-5647
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289039
|
- |
|
redhat
|
openshift_origin
openshift
|
node-util/www/html/restorer.php in the Red Hat OpenShift Origin before 1.0.5-3 allows remote attackers to execute arbitrary commands via a crafted uuid in the PATH_INFO.
|
CWE-20
Improper Input Validation
|
CVE-2012-5646
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289040
|
- |
|
infradead
|
openconnect
|
Multiple stack-based buffer overflows in http.c in OpenConnect before 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6128
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
