|
290941
|
- |
|
irfanview
|
irfanview_plugins
|
Heap-based buffer overflow in jpeg_ls.dll in the Jpeg_LS (aka JLS) plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS f…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3585
|
2024-11-21 10:41 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290942
|
- |
|
invensys
|
wonderware_application_server
intouch
|
slssvc.exe in Invensys Wonderware SuiteLink in Invensys InTouch 2012 and Wonderware Application Server 2012 allows remote attackers to cause a denial of service (resource consumption) via a long Unic…
|
CWE-399
Resource Management Errors
|
CVE-2012-3847
|
2024-11-21 10:41 |
2012-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290943
|
- |
|
atmoner
|
php-pastebin
|
Cross-site scripting (XSS) vulnerability in index.php in PHP-pastebin 2.1 allows remote attackers to inject arbitrary web script or HTML via the title parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3846
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290944
|
- |
|
lan_messenger
|
lan_messenger1.2.28
|
Buffer overflow in LAN Messenger 1.2.28 and earlier allows remote attackers to cause a denial of service (crash) via a long string in an initiation request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3845
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290945
|
- |
|
vbulletin
|
vbulletin
|
Cross-site scripting (XSS) vulnerability in vBulletin 4.1.12 allows remote attackers to inject arbitrary web script or HTML via a long string in the subject parameter when creating a post.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3844
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290946
|
- |
|
e107
|
e107
|
Cross-site scripting (XSS) vulnerability in the registration page in e107, probably 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3843
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290947
|
- |
|
jbmc-software
|
directadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3842
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290948
|
- |
|
kmplayer
|
kmplayer
|
Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current w…
|
NVD-CWE-Other
|
CVE-2012-3841
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290949
|
- |
|
myclientbase
|
myclientbase
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php/users/form/user_id in MyClientBase 0.12 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name or (2) la…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3840
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290950
|
- |
|
myclientbase
|
myclientbase
|
Multiple SQL injection vulnerabilities in application/core/MY_Model.php in MyClientBase 0.12 allow remote attackers to execute arbitrary SQL commands via the (1) invoice_number or (2) tags parameter …
|
CWE-89
SQL Injection
|
CVE-2012-3839
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
