|
291151
|
- |
|
gnome
|
libsocialweb
|
services/flickr/flickr.c in libsocialweb before 0.25.21 automatically connects to Flickr when no Flickr account is set, which might allow remote attackers to obtain sensitive information via a man-in…
|
CWE-200
Information Exposure
|
CVE-2012-4511
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291152
|
- |
|
claws-mail
|
claws-mail
|
The strchr function in procmime.c in Claws Mail (aka claws-mail) 3.8.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted email.
|
NVD-CWE-Other
|
CVE-2012-4507
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291153
|
- |
|
sitaram_chamarty
gitolite
|
gitolite
|
Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories …
|
CWE-22
Path Traversal
|
CVE-2012-4506
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291154
|
- |
|
otrs
|
otrs
|
Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.15, 3.0.x before 3.0.17, and 3.1.x before 3.1.11 allows remote attackers to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4751
|
2024-11-21 10:43 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291155
|
- |
|
novell
|
zenworks_asset_management
|
The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (…
|
CWE-255
Credentials Management
|
CVE-2012-4933
|
2024-11-21 10:43 |
2012-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291156
|
- |
|
ibm
|
aix
vios
|
The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly manage privileges in an RBAC environment, which allows attackers to bypass intended file-read restrictions by le…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4845
|
2024-11-21 10:43 |
2012-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291157
|
- |
|
ibm
|
db2
|
Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored Module) Stored Procedure (SP) infrastructure in IBM DB2 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1 might allow remote authenticated …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4826
|
2024-11-21 10:43 |
2012-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291158
|
- |
|
oracle
|
industry_applications
|
Unspecified vulnerability in the Oracle Central Designer component in Oracle Industry Applications 1.3, 1.4, and 1.4.2 allows remote attackers to affect confidentiality, integrity, and availability v…
|
NVD-CWE-noinfo
|
CVE-2012-5066
|
2024-11-21 10:43 |
2012-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291159
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows local users to affect i…
|
NVD-CWE-noinfo
|
CVE-2012-5065
|
2024-11-21 10:43 |
2012-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291160
|
- |
|
oracle
|
financial_services_software
|
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10.0.0, 10.0.2, 10.1.0, 10.2.0, 10.2.2, 10.3.0, 10.5.0, and 11.0.0 through 11.2.0 al…
|
NVD-CWE-noinfo
|
CVE-2012-5064
|
2024-11-21 10:43 |
2012-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
