|
292851
|
- |
|
ulli_horlacher
|
fex
|
Multiple cross-site scripting (XSS) vulnerabilities in fup in Frams' Fast File EXchange (F*EX, aka fex) before 20111129-2 allow remote attackers to inject arbitrary web script or HTML via the (1) to …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1293
|
2024-11-21 10:36 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292852
|
- |
|
notmuchmail
|
notmuch
|
emacs/notmuch-mua.el in Notmuch before 0.11.1, when using the Emacs interface, allows user-assisted remote attackers to read arbitrary files via crafted MML tags, which are not properly quoted in an …
|
CWE-20
Improper Input Validation
|
CVE-2012-1103
|
2024-11-21 10:36 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292853
|
- |
|
juan_ramon
|
osclass
|
Multiple cross-site scripting (XSS) vulnerabilities in the getParam function in oc-includes/osclass/core/Params.php in OSClass before 2.3.5 allow remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0974
|
2024-11-21 10:36 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292854
|
- |
|
osclass
|
osclass
|
Multiple SQL injection vulnerabilities in OSClass before 2.3.5 allow remote attackers to execute arbitrary SQL commands via the sCategory parameter to index.php, which is not properly handled by the …
|
CWE-89
SQL Injection
|
CVE-2012-0973
|
2024-11-21 10:36 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292855
|
- |
|
jam_warehouse
|
knowledgetree_open_source
|
Multiple cross-site scripting (XSS) vulnerabilities in config/dmsDefaults.php in KnowledgeTree 3.7.0.2 and possibly earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0988
|
2024-11-21 10:36 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292856
|
- |
|
digium
|
asterisk
|
Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service (crash) or p…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1184
|
2024-11-21 10:36 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292857
|
- |
|
digium
debian
|
asterisk
debian_linux
|
Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1183
|
2024-11-21 10:36 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292858
|
- |
|
ingy
|
yaml\
|
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML (aka YAML-LibYAML and perl-YAML-LibYAML) module 0.38 for Perl allow remote attackers to cause a denial…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-1152
|
2024-11-21 10:36 |
2012-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292859
|
- |
|
perl
|
perl
|
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (proce…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-1151
|
2024-11-21 10:36 |
2012-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292860
|
- |
|
open-realty
|
open-realty
|
Directory traversal vulnerability in Open-Realty CMS 2.5.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the select_users_template parameter t…
|
CWE-22
Path Traversal
|
CVE-2012-1112
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
