|
290171
|
- |
|
bigantsoft
|
bigant_im_message_server
|
BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows remote attackers to create arbitrary files under AntServer\DocData\Public via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2012-6274
|
2024-11-21 10:45 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290172
|
- |
|
bigantsoft
|
bigant_im_message_server
|
SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execute arbitrary SQL commands via an SHU (aka search user) request.
|
CWE-89
SQL Injection
|
CVE-2012-6273
|
2024-11-21 10:45 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290173
|
- |
|
ibm
|
websphere_message_broker
|
IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2, when the Parse Query Strings option is enabled on an HTTPInput node, allows remote attackers to cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5953
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290174
|
- |
|
ibm
|
websphere_message_broker
|
IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2 does not validate Basic Authentication credentials before proceeding to WS-Addressing and WS-Security oper…
|
CWE-287
Improper Authentication
|
CVE-2012-5952
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290175
|
- |
|
ibm
|
netezza
|
Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject content, and conduct phishing attacks, …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5941
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290176
|
- |
|
ibm
|
netezza
|
The WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza, when SSL is not enabled, allows remote attackers to discover credentials by sniffing the network during the authentication pro…
|
CWE-287
Improper Authentication
|
CVE-2012-5940
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290177
|
- |
|
ibm
|
netezza
|
Cross-site request forgery (CSRF) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote attackers to hijack the authentication of unspecified victims …
|
CWE-352
Origin Validation Error
|
CVE-2012-5763
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290178
|
- |
|
ibm
|
netezza
|
Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vector…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5762
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290179
|
- |
|
ibm
|
netezza
|
Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via unspec…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5761
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290180
|
- |
|
ibm
|
netezza
|
SQL injection vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-5760
|
2024-11-21 10:45 |
2013-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
