|
289671
|
6.1 |
MEDIUM
Network
|
jquery
|
jquery
|
jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6708
|
2024-11-21 10:46 |
2018-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289672
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbdownloads_module
|
Cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6682
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289673
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
forumon_rpg_module
|
Multiple cross-site scripting (XSS) vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attacker…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6671
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289674
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbactivity_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the r…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6670
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289675
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbshout_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6668
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289676
|
6.1 |
MEDIUM
Network
|
dragonbyte-tech
|
vbshout
|
Cross-site scripting (XSS) vulnerability in vbshout.php in DragonByte Technologies vBShout module for vBulletin allows remote attackers to inject arbitrary web script or HTML via the shout parameter …
|
CWE-79
Cross-site Scripting
|
CVE-2012-6667
|
2024-11-21 10:46 |
2018-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289677
|
7.5 |
HIGH
Network
|
wordpress
|
wordpress
|
WordPress through 4.8.2 uses a weak MD5-based password hashing algorithm, which makes it easier for attackers to determine cleartext values by leveraging access to the hash values. NOTE: the approach…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2012-6707
|
2024-11-21 10:46 |
2017-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289678
|
9.8 |
CRITICAL
Network
|
inspircd
|
inspircd
|
inspircd in Debian before 2.0.7 does not properly handle unsigned integers. NOTE: This vulnerability exists because of an incomplete fix to CVE-2012-1836.
|
CWE-20
Improper Input Validation
|
CVE-2012-6696
|
2024-11-21 10:46 |
2017-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289679
|
9.8 |
CRITICAL
Network
|
sophos
rarlab
|
threat_detection_engine
unrar
|
A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine before 3.37.2 and other products, that can lead to arbitrary code execution. …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2012-6706
|
2024-11-21 10:46 |
2017-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289680
|
6.1 |
MEDIUM
Network
|
jamroom
|
jamroom
|
Cross Site Scripting (XSS) exists in Jamroom before 4.2.7 via the Status Update field.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6705
|
2024-11-21 10:46 |
2017-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
