|
293101
|
9.1 |
CRITICAL
Network
|
mahara
debian
|
mahara
debian_linux
|
Mahara 1.4.x before 1.4.4 and 1.5.x before 1.5.3 allows remote attackers to read arbitrary files or create TCP connections via an XML external entity (XXE) injection attack, as demonstrated by readin…
|
CWE-611
XXE
|
CVE-2012-2239
|
2024-11-21 10:38 |
2012-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293102
|
- |
|
redhat
|
jboss_enterprise_portal_platform
jboss_enterprise_soa_platform
jboss_enterprise_brms_platform
|
JGroups diagnostics service in JBoss Enterprise Portal Platform before 5.2.2, SOA Platform before 5.3.0, and BRMS Platform before 5.3.0, is enabled without authentication when started by the JGroups …
|
CWE-287
Improper Authentication
|
CVE-2012-2377
|
2024-11-21 10:38 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293103
|
- |
|
gajim
|
gajim
|
SQL injection vulnerability in the get_last_conversation_lines function in common/logger.py in Gajim before 0.15 allows remote attackers to execute arbitrary SQL commands via the jig parameter.
|
CWE-89
SQL Injection
|
CVE-2012-2086
|
2024-11-21 10:38 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293104
|
- |
|
egroupware
|
egroupware
|
Cross-site scripting (XSS) vulnerability in phpgwapi/inc/common_functions_inc.php in eGroupware before 1.8.004.20120405 allows remote attackers to inject arbitrary web script or HTML via the menuacti…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2211
|
2024-11-21 10:38 |
2012-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293105
|
- |
|
joao_ventura
|
print
|
Cross-site scripting (XSS) vulnerability in the Printer, email and PDF versions module 6.x-1.x before 6.x-1.15 and 7.x-1.x before 7.x-1.0 for Drupal allows remote attackers to inject arbitrary web sc…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2084
|
2024-11-21 10:38 |
2012-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293106
|
- |
|
razorcms
|
razorcms
|
Cross-site request forgery (CSRF) vulnerability in admin/index.php in RazorCMS 1.2.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that delete arbitr…
|
CWE-352
Origin Validation Error
|
CVE-2012-1900
|
2024-11-21 10:38 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293107
|
- |
|
ibm
|
xiv_storage_system_gen3_firmware
xiv_storage_system_gen3
|
The IBM XIV Storage System Gen3 before 11.1.0.a allows remote attackers to cause a denial of service (device outage) via TCP packets to unspecified ports.
|
NVD-CWE-noinfo
|
CVE-2012-2167
|
2024-11-21 10:38 |
2012-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293108
|
- |
|
emc
|
networker_module_for_microsoft_applications
|
The client in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375 allows remote attackers to execute arbitrary code by sending a crafted messag…
|
CWE-94
Code Injection
|
CVE-2012-2290
|
2024-11-21 10:38 |
2012-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293109
|
- |
|
emc
|
networker_module_for_microsoft_applications
|
The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local use…
|
CWE-255
Credentials Management
|
CVE-2012-2284
|
2024-11-21 10:38 |
2012-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293110
|
- |
|
emc
|
rsa_adaptive_authentication_on-premise
|
Unspecified vulnerability in EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 before SP3 P3 allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-2286
|
2024-11-21 10:38 |
2012-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
