|
290381
|
- |
|
joomla
|
joomla\!
|
Joomla! 2.5.x before 2.5.8 and 3.0.x before 3.0.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors involving "Inadequate protection."
|
NVD-CWE-noinfo
|
CVE-2012-5827
|
2024-11-21 10:45 |
2012-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290382
|
- |
|
tweepy
|
tweepy
|
Tweepy does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to s…
|
CWE-20
Improper Input Validation
|
CVE-2012-5825
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290383
|
- |
|
cerulean_studios
|
trillian
|
Trillian 5.1.0.19 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle att…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5824
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290384
|
- |
|
opensourceclassifieds
|
opensourceclassifieds
|
Open Source Classifieds does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-midd…
|
CWE-20
Improper Input Validation
|
CVE-2012-5823
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290385
|
7.4 |
HIGH
Network
|
mozilla
|
zamboni
|
The contribution feature in Zamboni does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5822
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290386
|
5.9 |
MEDIUM
Network
|
lynx
canonical
|
lynx
ubuntu_linux
|
Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to …
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5821
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290387
|
- |
|
google
|
admob
|
The developer-account sample code in Google AdMob does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, wh…
|
CWE-20
Improper Input Validation
|
CVE-2012-5820
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290388
|
7.4 |
HIGH
Network
|
filesanywhere
|
filesanywhere
|
FilesAnywhere does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attacke…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5819
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290389
|
- |
|
elephantdrive
|
elephantdrive
|
ElephantDrive does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attacke…
|
CWE-20
Improper Input Validation
|
CVE-2012-5818
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290390
|
7.4 |
HIGH
Network
|
amazon
codehaus
|
ec2_api_tools_java_library
xfire
|
Codehaus XFire 1.2.6 and earlier, as used in the Amazon EC2 API Tools Java library and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN)…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-5817
|
2024-11-21 10:45 |
2012-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
