|
291921
|
- |
|
typo3
|
typo3
|
Cross-site scripting (XSS) vulnerability in the Install Tool in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3531
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291922
|
- |
|
typo3
|
typo3
|
Incomplete blacklist vulnerability in the t3lib_div::quoteJSvalue API function in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote attackers to conduct cross-site s…
|
NVD-CWE-Other
|
CVE-2012-3530
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291923
|
- |
|
typo3
|
typo3
|
The configuration module in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote authenticated backend users to obtain the encryption key via unspecified…
|
CWE-200
Information Exposure
|
CVE-2012-3529
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291924
|
- |
|
typo3
|
typo3
|
Multiple cross-site scripting (XSS) vulnerabilities in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allow remote authenticated backend users to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3528
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291925
|
- |
|
typo3
debian
|
typo3
debian_linux
|
view_help.php in the backend help system in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote authenticated backend users to unserialize arbitrary objects and possib…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2012-3527
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291926
|
- |
|
thomas_eibner
|
mod_rpaf
|
The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For …
|
NVD-CWE-noinfo
|
CVE-2012-3526
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291927
|
- |
|
gnu
canonical
debian
|
binutils
libiberty
ubuntu_linux
debian_linux
|
Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to c…
|
CWE-189
Numeric Errors
|
CVE-2012-3509
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291928
|
- |
|
mozilla
|
bugzilla
|
Auth/Verify/LDAP.pm in Bugzilla 2.x and 3.x before 3.6.11, 3.7.x and 4.0.x before 4.0.8, 4.1.x and 4.2.x before 4.2.3, and 4.3.x before 4.3.3 does not restrict the characters in a username, which mig…
|
CWE-255
Credentials Management
|
CVE-2012-3981
|
2024-11-21 10:41 |
2012-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291929
|
- |
|
symantec
|
pgp_universal_server
|
Symantec PGP Universal Server 3.2.x before 3.2.1 MP2 does not properly manage sessions that include key search requests, which might allow remote attackers to read a private key in opportunistic circ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3582
|
2024-11-21 10:41 |
2012-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291930
|
- |
|
opensuse
gnugk
|
leap
opensuse
gnu_gatekeeper
|
GNU Gatekeeper before 3.1 does not limit the number of connections to the status port, which allows remote attackers to cause a denial of service (connection and thread consumption) via a large numbe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3534
|
2024-11-21 10:41 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
