|
294751
|
- |
|
hp
|
storageworks_p2000_g3_msa
|
HP StorageWorks P2000 G3 MSA array systems have a default account, which makes it easier for remote attackers to perform administrative tasks via unspecified vectors, a different vulnerability than C…
|
CWE-22
Path Traversal
|
CVE-2012-0697
|
2024-11-21 10:35 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294752
|
- |
|
ibm
|
cognos_executive_viewer
cognos_tm1
|
Multiple cross-site scripting (XSS) vulnerabilities in the Executive Viewer (EV) in IBM Cognos TM1 before 9.5 FP1 allow remote attackers to inject arbitrary web script or HTML via unspecified request…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0696
|
2024-11-21 10:35 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294753
|
- |
|
google
acer
samsung
|
chrome_os
ac700_chromebook
cr-48_chromebook
series_5_chromebook
|
Multiple unspecified vulnerabilities in Google Chrome before 17.0.963.27 on the Acer AC700, Samsung Series 5, and Cr-48 Chromebook platforms have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-0695
|
2024-11-21 10:35 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294754
|
8.1 |
HIGH
Network
|
tucaneando
|
tucan
|
Insecure plugin update mechanism in tucan through 0.3.10 could allow remote attackers to perform man-in-the-middle attacks and execute arbitrary code ith the permissions of the user running tucan.
|
NVD-CWE-noinfo
|
CVE-2012-0063
|
2024-11-21 10:34 |
2020-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294755
|
7.8 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
OverlayFS in the Linux kernel before 3.0.0-16.28, as used in Ubuntu 10.0.4 LTS and 11.10, is missing inode security checks which could allow attackers to bypass security restrictions and perform unau…
|
CWE-862
Missing Authorization
|
CVE-2012-0055
|
2024-11-21 10:34 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294756
|
5.3 |
MEDIUM
Network
|
mirc
|
mirc
|
mIRC prior to 7.22 has a message leak because chopping of outbound messages is mishandled.
|
CWE-200
Information Exposure
|
CVE-2011-5282
|
2024-11-21 10:34 |
2020-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294757
|
7.5 |
HIGH
Network
|
spamdyke
|
spamdyke
|
spamdyke prior to 4.2.1: STARTTLS reveals plaintext
|
CWE-74
Injection
|
CVE-2012-0070
|
2024-11-21 10:34 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294758
|
6.4 |
MEDIUM
Adjacent
|
cisco
|
ironport_web_security_appliance
|
Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks
|
CWE-20
Improper Input Validation
|
CVE-2012-0334
|
2024-11-21 10:34 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294759
|
9.8 |
CRITICAL
Network
|
imperva
|
securesphere_web_application_firewall
|
Imperva SecureSphere Web Application Firewall (WAF) before 12-august-2010 allows SQL injection filter bypass.
|
CWE-89
SQL Injection
|
CVE-2011-5266
|
2024-11-21 10:34 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294760
|
9.8 |
CRITICAL
Network
|
distributed_ruby_project
|
distributed_ruby
|
Distributed Ruby (aka DRuby) 1.8 mishandles instance_eval.
|
NVD-CWE-noinfo
|
CVE-2011-5331
|
2024-11-21 10:34 |
2019-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
