|
293431
|
- |
|
htc
|
evo_4g_software
evo_4g
evo_design_4g_software
evo_design_4g
shift_4g_software
shift_4g
evo_3d_software
evo_3d
evo_view_4g_software
evo_view_4g
vivid_software
vivid
The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid befor…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2217
|
2024-11-21 10:38 |
2012-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
293432
|
- |
|
samba
|
samba
|
The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not p…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2111
|
2024-11-21 10:38 |
2012-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293433
|
- |
|
squid-cache
|
squid
|
Squid 3.1.9 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reprod…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2213
|
2024-11-21 10:38 |
2012-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293434
|
- |
|
mcafee
|
web_gateway
|
McAfee Web Gateway 7.0 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might no…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2212
|
2024-11-21 10:38 |
2012-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293435
|
- |
|
openssl
|
openssl
|
Multiple integer signedness errors in crypto/buffer/buffer.c in OpenSSL 0.9.8v allow remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly…
|
CWE-189
Numeric Errors
|
CVE-2012-2131
|
2024-11-21 10:38 |
2012-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293436
|
- |
|
teampass
|
teampass
|
Cross-site scripting (XSS) vulnerability in sources/users.queries.php in TeamPass before 2.1.6 allows remote authenticated users to inject arbitrary web script or HTML via the login parameter in an a…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2234
|
2024-11-21 10:38 |
2012-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293437
|
- |
|
owncloud
|
owncloud
|
Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the r…
|
CWE-20
Improper Input Validation
|
CVE-2012-2270
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293438
|
- |
|
owncloud
|
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) an arbitrary field to apps/contacts/ajax/addcard.php…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2269
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293439
|
- |
|
ryan_walberg
|
php_gift_registry
|
SQL injection vulnerability in users.php in PHP Gift Registry 1.5.5 allows remote authenticated users to execute arbitrary SQL commands via the userid parameter in an edit action.
|
CWE-89
SQL Injection
|
CVE-2012-2236
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293440
|
- |
|
comodo
|
comodo_internet_security
|
Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service (system crash) via a crafted 32-bit Portable Executable (PE) file with a kernel Image…
|
CWE-94
Code Injection
|
CVE-2012-2273
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
