|
291981
|
- |
|
emc
|
networker_module_for_microsoft_applications
|
The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local use…
|
CWE-255
Credentials Management
|
CVE-2012-2284
|
2024-11-21 10:38 |
2012-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291982
|
- |
|
emc
|
rsa_adaptive_authentication_on-premise
|
Unspecified vulnerability in EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 before SP3 P3 allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-2286
|
2024-11-21 10:38 |
2012-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291983
|
- |
|
ivano_binetti
|
wolf_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in wolfcms/admin/user/add in Wolf CMS 0.75 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user[name], (2) us…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1898
|
2024-11-21 10:38 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291984
|
- |
|
wolfcms
|
wolf_cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Wolf CMS 0.75 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) delete users via th…
|
CWE-352
Origin Validation Error
|
CVE-2012-1897
|
2024-11-21 10:38 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291985
|
- |
|
devscripts_devel_team
|
devscripts
|
scripts/dget.pl in devscripts before 2.10.73 allows remote attackers to execute arbitrary commands via a crafted (1) .dsc or (2) .changes file, related to "arguments to external commands" that are no…
|
CWE-20
Improper Input Validation
|
CVE-2012-2242
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291986
|
- |
|
devscripts_devel_team
|
devscripts
|
scripts/dget.pl in devscripts before 2.12.3 allows remote attackers to delete arbitrary files via a crafted (1) .dsc or (2) .changes file, probably related to a NULL byte in a filename.
|
CWE-20
Improper Input Validation
|
CVE-2012-2241
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291987
|
- |
|
devscripts_devel_team
|
devscripts
|
scripts/dscverify.pl in devscripts before 2.12.3 allows remote attackers to execute arbitrary commands via unspecified vectors related to "arguments to external commands."
|
CWE-20
Improper Input Validation
|
CVE-2012-2240
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291988
|
- |
|
drupal
|
drupal
|
Drupal 7.x before 7.14 does not properly restrict access to nodes in a list when using a "contributed node access module," which allows remote authenticated users with the "Access the content overvie…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2153
|
2024-11-21 10:38 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291989
|
- |
|
apache
|
qpid
|
Apache Qpid 0.17 and earlier does not properly restrict incoming client connections, which allows remote attackers to cause a denial of service (file descriptor consumption) via a large number of inc…
|
CWE-399
Resource Management Errors
|
CVE-2012-2145
|
2024-11-21 10:38 |
2012-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291990
|
- |
|
ibm
|
websphere_mq
|
The server message channel agent in the queue manager in the server in IBM WebSphere MQ 7.0.1 before 7.0.1.9, 7.1, and 7.5 on Solaris allows remote attackers to cause a denial of service (invalid add…
|
CWE-399
Resource Management Errors
|
CVE-2012-2199
|
2024-11-21 10:38 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
