|
290871
|
- |
|
vbadvanced
|
vbadvanced_cmps
|
PHP remote file inclusion vulnerability in vb/includes/vba_cmps_include_bottom.php in vBadvanced CMPS 3.2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pages[te…
|
CWE-94
Code Injection
|
CVE-2012-5224
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290872
|
- |
|
crawlability
|
vbseo
|
The proc_deutf function in includes/functions_vbseocp_abstract.php in vBSEO 3.5.0, 3.5.1, 3.5.2, 3.6.0, and earlier allows remote attackers to insert and execute arbitrary PHP code via "complex curly…
|
CWE-94
Code Injection
|
CVE-2012-5223
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290873
|
- |
|
condor_project
|
condor
|
Multiple unspecified vulnerabilities in Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 have unknown impact and attack vectors related to "error checking of system calls."
|
NVD-CWE-noinfo
|
CVE-2012-5197
|
2024-11-21 10:44 |
2012-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290874
|
- |
|
condor_project
|
condor
|
Multiple buffer overflows in Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 have unknown impact and attack vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5196
|
2024-11-21 10:44 |
2012-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290875
|
- |
|
fork-cms
|
fork_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Fork CMS before 3.2.7 allow remote attackers to inject arbitrary web script or HTML via the term parameter to (1) autocomplete.php, (2) search/a…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5164
|
2024-11-21 10:44 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290876
|
- |
|
osclass
|
osclass
|
Cross-site scripting (XSS) vulnerability in oc-admin/ajax/ajax.php in OSClass before 2.3.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter in an enable_category ac…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5163
|
2024-11-21 10:44 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290877
|
- |
|
osclass
|
osclass
|
Multiple SQL injection vulnerabilities in oc-admin/ajax/ajax.php in OSClass before 2.3.5 allow remote attackers to execute arbitrary SQL commands via the id parameter in a (1) edit_category_post or (…
|
CWE-89
SQL Injection
|
CVE-2012-5162
|
2024-11-21 10:44 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290878
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 3.5.2.2, as distributed by the cdnetworks-kr-1 mirror during an unspecified time frame in 2012, contains an externally introduced modification (Trojan Horse) in server_sync.php, which allo…
|
CWE-94
Code Injection
|
CVE-2012-5159
|
2024-11-21 10:44 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290879
|
- |
|
sqlitemanager
|
sqlitemanager
|
Multiple cross-site scripting (XSS) vulnerabilities in SQLiteManager 1.2.4 allow remote attackers to inject arbitrary web script or HTML via the dbsel parameter to (1) main.php or (2) index.php; or (…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5105
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290880
|
- |
|
ubbcentral
|
ubb.threads
|
Cross-site scripting (XSS) vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5104
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
