|
294211
|
- |
|
yoono
|
yoono_desktop
|
Cross-site scripting (XSS) vulnerability in the Add friends module in Yoono Desktop Application before 1.8.21 allows remote attackers to inject arbitrary web script or HTML via the create field in a …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1214
|
2024-11-21 10:36 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294212
|
- |
|
nova-cms
|
nova_cms
|
Multiple PHP remote file inclusion vulnerabilities in Nova CMS allow remote attackers to execute arbitrary PHP code via a URL in the (1) fileType parameter to optimizer/index.php, (2) id parameter to…
|
CWE-94
Code Injection
|
CVE-2012-1200
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294213
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
base_ag_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allows remote attackers to execute arbitrary code by uploading contents of the file with an executable extension via a create actio…
|
CWE-20
Improper Input Validation
|
CVE-2012-1198
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294214
|
- |
|
acd_systems
|
acdsee
|
Integer overflow in the IDE_ACDStd.apl module for ACDSee 14.1 Build 137 allows remote attackers to execute arbitrary code via crafted "image dimension values" in a BMP file, which triggers a heap-bas…
|
CWE-189
Numeric Errors
|
CVE-2012-1197
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294215
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) BASE_path parameter to …
|
CWE-94
Code Injection
|
CVE-2012-1199
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294216
|
- |
|
landesk
|
lenovo_thinkmanagement_console
|
Directory traversal vulnerability in the VulCore web service (WSVulnerabilityCore/VulCore.asmx) in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. (dot…
|
CWE-22
Path Traversal
|
CVE-2012-1196
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294217
|
- |
|
landesk
|
lenovo_thinkmanagement_console
|
Unrestricted file upload vulnerability in andesk/managementsuite/core/core.anonymous/ServerSetup.asmx in the ServerSetup web service in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1195
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294218
|
- |
|
microsoft
|
windows_server_2008
|
The resolver in the DNS Server service in Microsoft Windows Server 2008 before R2 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query,…
|
NVD-CWE-Other
|
CVE-2012-1194
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294219
|
- |
|
powerdns
|
powerdns_recursor
|
The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote att…
|
NVD-CWE-Other
|
CVE-2012-1193
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294220
|
- |
|
unbound
|
unbound
|
The resolver in Unbound before 1.4.11 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger co…
|
NVD-CWE-Other
|
CVE-2012-1192
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
