|
293981
|
- |
|
juan_ramon
|
osclass
|
Multiple cross-site scripting (XSS) vulnerabilities in the getParam function in oc-includes/osclass/core/Params.php in OSClass before 2.3.5 allow remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0974
|
2024-11-21 10:36 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293982
|
- |
|
osclass
|
osclass
|
Multiple SQL injection vulnerabilities in OSClass before 2.3.5 allow remote attackers to execute arbitrary SQL commands via the sCategory parameter to index.php, which is not properly handled by the …
|
CWE-89
SQL Injection
|
CVE-2012-0973
|
2024-11-21 10:36 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293983
|
- |
|
jam_warehouse
|
knowledgetree_open_source
|
Multiple cross-site scripting (XSS) vulnerabilities in config/dmsDefaults.php in KnowledgeTree 3.7.0.2 and possibly earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0988
|
2024-11-21 10:36 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293984
|
- |
|
digium
|
asterisk
|
Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service (crash) or p…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1184
|
2024-11-21 10:36 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293985
|
- |
|
digium
debian
|
asterisk
debian_linux
|
Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1183
|
2024-11-21 10:36 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293986
|
- |
|
ingy
|
yaml\
|
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML (aka YAML-LibYAML and perl-YAML-LibYAML) module 0.38 for Perl allow remote attackers to cause a denial…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-1152
|
2024-11-21 10:36 |
2012-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293987
|
- |
|
perl
|
perl
|
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (proce…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-1151
|
2024-11-21 10:36 |
2012-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293988
|
- |
|
open-realty
|
open-realty
|
Directory traversal vulnerability in Open-Realty CMS 2.5.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the select_users_template parameter t…
|
CWE-22
Path Traversal
|
CVE-2012-1112
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293989
|
- |
|
datemill
|
etano
|
Multiple cross-site scripting (XSS) vulnerabilities in Etano 1.22 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user, (2) email, (3) email2, (4) f17_zip, or (5…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1110
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293990
|
- |
|
scott_wheeler
|
taglib
|
The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted vendorLength field in an ogg file.
|
CWE-20
Improper Input Validation
|
CVE-2012-1108
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
