|
292071
|
- |
|
atmoner
|
php-pastebin
|
Cross-site scripting (XSS) vulnerability in index.php in PHP-pastebin 2.1 allows remote attackers to inject arbitrary web script or HTML via the title parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3846
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292072
|
- |
|
lan_messenger
|
lan_messenger1.2.28
|
Buffer overflow in LAN Messenger 1.2.28 and earlier allows remote attackers to cause a denial of service (crash) via a long string in an initiation request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3845
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292073
|
- |
|
vbulletin
|
vbulletin
|
Cross-site scripting (XSS) vulnerability in vBulletin 4.1.12 allows remote attackers to inject arbitrary web script or HTML via a long string in the subject parameter when creating a post.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3844
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292074
|
- |
|
e107
|
e107
|
Cross-site scripting (XSS) vulnerability in the registration page in e107, probably 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3843
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292075
|
- |
|
jbmc-software
|
directadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3842
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292076
|
- |
|
kmplayer
|
kmplayer
|
Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current w…
|
NVD-CWE-Other
|
CVE-2012-3841
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292077
|
- |
|
myclientbase
|
myclientbase
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php/users/form/user_id in MyClientBase 0.12 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name or (2) la…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3840
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292078
|
- |
|
myclientbase
|
myclientbase
|
Multiple SQL injection vulnerabilities in application/core/MY_Model.php in MyClientBase 0.12 allow remote attackers to execute arbitrary SQL commands via the (1) invoice_number or (2) tags parameter …
|
CWE-89
SQL Injection
|
CVE-2012-3839
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292079
|
- |
|
babygekko
|
baby_gekko
|
Gekko before 1.2.0 allows remote attackers to obtain the installation path via a direct request to (1) admin/templates/babygekko/index.php or (2) templates/html5demo/index.php.
|
CWE-200
Information Exposure
|
CVE-2012-3838
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292080
|
- |
|
babygekko
|
baby_gekko
|
Multiple cross-site scripting (XSS) vulnerabilities in apps/users/registration.template.php in Baby Gekko 1.2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) u…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3837
|
2024-11-21 10:41 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
