|
292431
|
- |
|
hp
|
fortify_software_security_center
|
HP Fortify Software Security Center 3.1, 3.3, 3.4, and 3.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2012-3249
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292432
|
- |
|
hp
|
fortify_software_security_center
|
HP Fortify Software Security Center 3.1, 3.3, 3.4, and 3.5 allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2012-3248
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292433
|
- |
|
hp
|
integrity_firmware
integrity
itegrity
|
Unspecified vulnerability on the HP Integrity Server BL860c i2, BL870c i2, and BL890c i2 with firmware before 26.31 and the HP Integrity Server rx2800 i2 with firmware before 26.30 allows local users…
|
NVD-CWE-noinfo
|
CVE-2012-3247
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292434
|
- |
|
tridium
|
niagara_ax
|
The default configuration of Tridium Niagara AX Framework through 3.6 uses a cleartext base64 format for transmission of credentials in cookies, which allows remote attackers to obtain sensitive info…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2012-3025
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292435
|
- |
|
tridium
|
niagara_ax
|
Tridium Niagara AX Framework through 3.6 uses predictable values for (1) session IDs and (2) keys, which might allow remote attackers to bypass authentication via a brute-force attack.
|
CWE-287
Improper Authentication
|
CVE-2012-3024
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292436
|
- |
|
siemens
|
comos
|
Siemens COMOS before 9.1 Patch 413, 9.2 before Update 03 Patch 023, and 10.0 before Patch 005 allows remote authenticated users to obtain database administrative access via unspecified method calls.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3009
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292437
|
- |
|
tom_braider
|
count_per_day
|
Multiple cross-site scripting (XSS) vulnerabilities in userperspan.php in the Count Per Day module before 3.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) p…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3434
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292438
|
- |
|
zabbix
|
zabbix
|
SQL injection vulnerability in frontends/php/popup_bitem.php in Zabbix 1.8.15rc1 and earlier, and 2.x before 2.0.2rc1, allows remote attackers to execute arbitrary SQL commands via the itemid paramet…
|
CWE-89
SQL Injection
|
CVE-2012-3435
|
2024-11-21 10:40 |
2012-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292439
|
- |
|
canonical
libpng
opensuse
redhat
debian
|
ubuntu_linux
libpng
opensuse
debian_linux
|
The png_push_read_zTXt function in pngpread.c in libpng 1.0.x before 1.0.58, 1.2.x before 1.2.48, 1.4.x before 1.4.10, and 1.5.x before 1.5.10 allows remote attackers to cause a denial of service (ou…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3425
|
2024-11-21 10:40 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292440
|
- |
|
jan_kara
|
linux_diskquota
|
The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3417
|
2024-11-21 10:40 |
2012-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
