|
293561
|
- |
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properl…
|
CWE-399
Resource Management Errors
|
CVE-2012-1529
|
2024-11-21 10:37 |
2012-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293562
|
- |
|
databasepublish
|
admin\
|
Cross-site request forgery (CSRF) vulnerability in the Admin:hover module for Drupal allows remote attackers to hijack the authentication of administrators for requests that unpublish all nodes, and …
|
CWE-352
Origin Validation Error
|
CVE-2012-1631
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293563
|
- |
|
nestor_mata_cuthbert
|
taxonomy_navigator
|
Cross-site scripting (XSS) vulnerability in the Taxonomy Navigator module for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1630
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293564
|
- |
|
dmitry_loac
|
taxotouch
|
Cross-site scripting (XSS) vulnerability in the Taxotouch module for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1629
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293565
|
- |
|
63reasons
|
supercron
|
Cross-site scripting (XSS) vulnerability in the SuperCron module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1628
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293566
|
- |
|
karen_stevenson
|
date
|
SQL injection vulnerability in the conversion form for Events in the Date module 6.x-2.x before 6.x-2.8 for Drupal allows remote authenticated users with the "administer Date Tools" privilege to exec…
|
CWE-89
SQL Injection
|
CVE-2012-1626
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293567
|
- |
|
wizonesolutions
|
fillpdf
|
Eval injection vulnerability in the fillpdf_form_export_decode function in fillpdf.admin.inc in the Fill PDF module 6.x-1.x before 6.x-1.16 and 7.x-1.x before 7.x-1.2 for Drupal allows remote authent…
|
CWE-94
Code Injection
|
CVE-2012-1625
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293568
|
- |
|
erikwebb
|
password_policy
|
Cross-site request forgery (CSRF) vulnerability in the Password Policy module before 6.x-1.4 and 7.x-1.0 beta3 for Drupal allows remote attackers to hijack the authentication of administrative users …
|
CWE-352
Origin Validation Error
|
CVE-2012-1633
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293569
|
- |
|
erik_webb
|
password_policy
|
Cross-site scripting (XSS) vulnerability in password_policy.admin.inc in the Password Policy module before 6.x-1.4 and 7.x-1.0 beta3 for Drupal allows remote authenticated users with administer polic…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1632
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293570
|
- |
|
marvil07
|
vote_up_down
|
Cross-site scripting (XSS) vulnerability in vud_term.module in the Vote Up/Down module 6.x-2.x before 6.x-2.8 and 6.x-3.x before 6.x-3.1 for Drupal allows remote authenticated users to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1627
|
2024-11-21 10:37 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
