|
292101
|
- |
|
bytemark
|
symbiosis
|
Bytemark Symbiosis before Revision 1322 does not properly validate passwords, which allows remote attackers to gain access to email accounts via an arbitrary password.
|
CWE-20
Improper Input Validation
|
CVE-2012-2368
|
2024-11-21 10:38 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292102
|
- |
|
mybb
|
mybb
|
MyBB (aka MyBulletinBoard) before 1.6.7 allows remote attackers to obtain sensitive information via a malformed forumread cookie, which reveals the installation path in an error message.
|
CWE-200
Information Exposure
|
CVE-2012-2327
|
2024-11-21 10:38 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292103
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in the Admin Control Panel (ACP) in MyBB (aka MyBulletinBoard) before 1.6.7 allows remote administrators to inject arbitrary web script or HTML via a malforme…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2326
|
2024-11-21 10:38 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292104
|
- |
|
mybb
|
mybb
|
SQL injection vulnerability in the User Inline Moderation feature in the Admin Control Panel (ACP) in MyBB (aka MyBulletinBoard) before 1.6.7 allows remote administrators to execute arbitrary SQL com…
|
CWE-89
SQL Injection
|
CVE-2012-2325
|
2024-11-21 10:38 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292105
|
- |
|
mybb
|
mybb
|
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) before 1.6.7 allow remote administrators to execute arbitrary SQL commands via unspecified vectors in the (1) user search or (2) M…
|
CWE-89
SQL Injection
|
CVE-2012-2324
|
2024-11-21 10:38 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292106
|
- |
|
linux
|
linux_kernel
|
The Linux kernel before 3.4.5 on the x86 platform, when Physical Address Extension (PAE) is enabled, does not properly use the Page Middle Directory (PMD), which allows local users to cause a denial …
|
CWE-362
Race Condition
|
CVE-2012-2373
|
2024-11-21 10:38 |
2012-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292107
|
- |
|
linux
|
linux_kernel
|
The sock_alloc_send_pskb function in net/core/sock.c in the Linux kernel before 3.4.5 does not properly validate a certain length value, which allows local users to cause a denial of service (heap-ba…
|
CWE-20
Improper Input Validation
|
CVE-2012-2136
|
2024-11-21 10:38 |
2012-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292108
|
- |
|
ibm
|
rational_directory_server
tivoli_directory_server
global_security_kit
|
IBM Global Security Kit (aka GSKit) before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, uses the PKCS #12 file format for certificate objects …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2203
|
2024-11-21 10:38 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292109
|
- |
|
ibm
|
rational_directory_server
tivoli_directory_server
global_security_kit
|
IBM Global Security Kit (aka GSKit) before 8.0.14.22, as used in IBM Rational Directory Server, IBM Tivoli Directory Server, and other products, does not properly validate data during execution of a …
|
CWE-20
Improper Input Validation
|
CVE-2012-2191
|
2024-11-21 10:38 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292110
|
- |
|
debian
canonical
|
php5-common
debian_linux
php5
ubuntu_linux
|
The Debian php_crypt_revamped.patch patch for PHP 5.3.x, as used in the php5 package before 5.3.3-7+squeeze4 in Debian GNU/Linux squeeze, the php5 package before 5.3.2-1ubuntu4.17 in Ubuntu 10.04 LTS…
|
CWE-310
Cryptographic Issues
|
CVE-2012-2317
|
2024-11-21 10:38 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
