|
292781
|
5.9 |
MEDIUM
Network
|
cisco
|
ironport_web_security_appliance
|
Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks
|
CWE-295
Improper Certificate Validation
|
CVE-2012-1316
|
2024-11-21 10:36 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292782
|
4.9 |
MEDIUM
Network
|
whoopsie-daisy_project
|
whoopsie-daisy
|
whoopsie-daisy before 0.1.26: Root user can remove arbitrary files
|
CWE-428
Unquoted Search Path or Element
|
CVE-2012-0945
|
2024-11-21 10:36 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292783
|
6.1 |
MEDIUM
Network
|
plixer
|
scrutinizer_netflow_\&_sflow_analyzer
|
Cross-site scripting (XSS) vulnerability in cgi-bin/scrut_fa_exclusions.cgi in Plixer International Scrutinizer NetFlow and sFlow Analyzer 8.6.2.16204 and other versions before 9.0.1.19899 allows rem…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1261
|
2024-11-21 10:36 |
2020-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292784
|
6.1 |
MEDIUM
Network
|
plixer
|
scrutinizer_netflow_\&_sflow_analyzer
|
Cross-site scripting (XSS) vulnerability in cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allows remo…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1260
|
2024-11-21 10:36 |
2020-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292785
|
9.8 |
CRITICAL
Network
|
plixer
|
scrutinizer_netflow_\&_sflow_analyzer
|
Multiple SQL injection vulnerabilities in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allow remote attackers to execute arbi…
|
CWE-89
SQL Injection
|
CVE-2012-1259
|
2024-11-21 10:36 |
2020-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292786
|
6.5 |
MEDIUM
Network
|
plixer
|
scrutinizer_netflow_\&_sflow_analyzer
|
cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer before 9.0.1.19899 does not validate user permissions, which allow remote attackers to add user accounts with admini…
|
CWE-287
Improper Authentication
|
CVE-2012-1258
|
2024-11-21 10:36 |
2020-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292787
|
6.1 |
MEDIUM
Network
|
ldap-account-manager
fedoraproject
debian
|
ldap_account_manager
fedora
debian_linux
|
A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1115
|
2024-11-21 10:36 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292788
|
6.1 |
MEDIUM
Network
|
ldap-account-manager
fedoraproject
debian
|
ldap_account_manager
fedora
debian_linux
|
A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the filter parameter to cmd.php in an export and exporter_id action. and the filteruid parameter to list.php.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1114
|
2024-11-21 10:36 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292789
|
5.5 |
MEDIUM
Local
|
apereo
fedoraproject
debian
|
phpcas
fedora
debian_linux
|
An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file…
|
CWE-200
Information Exposure
|
CVE-2012-1105
|
2024-11-21 10:36 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292790
|
5.3 |
MEDIUM
Network
|
apereo
debian
|
phpcas
debian_linux
|
A Security Bypass vulnerability exists in the phpCAS 1.2.2 library from the jasig project due to the way proxying of services are managed.
|
CWE-269
Improper Privilege Management
|
CVE-2012-1104
|
2024-11-21 10:36 |
2019-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
