|
288541
|
6.1 |
MEDIUM
Network
|
fortinet
|
fortidb
|
Multiple cross-site scripting (XSS) vulnerabilities in Java number format exception handling in FortiGate FortiDB before 4.4.2 allow remote attackers to inject arbitrary web script or HTML via the co…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6347
|
2024-11-21 10:46 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288542
|
6.1 |
MEDIUM
Network
|
fortinet
|
fortiweb
|
Multiple cross-site scripting (XSS) vulnerabilities in FortiWeb before 4.4.4 allow remote attackers to inject arbitrary web script or HTML via the (1) redir or (2) mkey parameter to waf/pcre_expressi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6346
|
2024-11-21 10:46 |
2018-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288543
|
6.1 |
MEDIUM
Network
|
jquery
|
jquery
|
jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6708
|
2024-11-21 10:46 |
2018-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288544
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbdownloads_module
|
Cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6682
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288545
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
forumon_rpg_module
|
Multiple cross-site scripting (XSS) vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attacker…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6671
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288546
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbactivity_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the r…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6670
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288547
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbshout_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6668
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288548
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbshout
|
Cross-site scripting (XSS) vulnerability in vbshout.php in DragonByte Technologies vBShout module for vBulletin allows remote attackers to inject arbitrary web script or HTML via the shout parameter …
|
CWE-79
Cross-site Scripting
|
CVE-2012-6667
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288549
|
7.5 |
HIGH
Network
|
wordpress
|
wordpress
|
WordPress through 4.8.2 uses a weak MD5-based password hashing algorithm, which makes it easier for attackers to determine cleartext values by leveraging access to the hash values. NOTE: the approach…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2012-6707
|
2024-11-21 10:46 |
2017-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288550
|
9.8 |
CRITICAL
Network
|
inspircd
|
inspircd
|
inspircd in Debian before 2.0.7 does not properly handle unsigned integers. NOTE: This vulnerability exists because of an incomplete fix to CVE-2012-1836.
|
CWE-20
Improper Input Validation
|
CVE-2012-6696
|
2024-11-21 10:46 |
2017-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
