|
297251
|
- |
|
opensuse
|
opensuse
|
LanItems.ycp in save_y2logs in yast2-network before 2.24.4 in SUSE YaST writes cleartext Wi-Fi credentials to the y2log log file, which allows context-dependent attackers to obtain sensitive informat…
|
CWE-200
Information Exposure
|
CVE-2012-0425
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297252
|
- |
|
opensuse
|
zypper
|
zypp-refresh-wrapper in SUSE Zypper before 1.3.20 and 1.6.x before 1.6.166 allows local users to create files in arbitrary directories, or possibly have unspecified other impact, via a pathname in th…
|
NVD-CWE-noinfo
|
CVE-2012-0420
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297253
|
- |
|
novell
|
suse_manager
|
Cross-site scripting (XSS) vulnerability in the Spacewalk service in SUSE Manager 1.2 for SUSE Linux Enterprise (SLE) 11 SP1 allows remote attackers to inject arbitrary web script or HTML via an imag…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0414
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297254
|
- |
|
wikiwig_project
|
wikiwig
|
Multiple cross-site scripting (XSS) vulnerabilities in spell-check-savedicts.php in the SpellChecker module in Xinha, as used in WikiWig 5.01 and possibly other products, allow remote attackers to in…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5267
|
2024-11-21 10:34 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297255
|
- |
|
novell
|
groupwise
|
An ActiveX control in gwcls1.dll in the client in Novell GroupWise 8.0 before 8.0.3 HP2 and 2012 before SP1 HP1 allows remote attackers to execute arbitrary code via (1) a pointer argument to the Set…
|
CWE-94
Code Injection
|
CVE-2012-0439
|
2024-11-21 10:34 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297256
|
- |
|
featurific_for_wordpress_project
|
featurific-for-wordpress
|
Cross-site scripting (XSS) vulnerability in cached_image.php in the Featurific For WordPress plugin 1.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the snum par…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5265
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297257
|
- |
|
marcel_brinkkemper
|
lazyest-backup
|
Cross-site scripting (XSS) vulnerability in lazyest-backup.php in the Lazyest Backup plugin before 0.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xml_or_al…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5264
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297258
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in RetrieveMailExamples in SAP NetWeaver 7.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the server parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5263
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297259
|
- |
|
sonicwall
|
aventail_sra_ex9000
aventail_sra_ex7000
aventail_sra_ex6000
aventail_sra_ex_virtual_appliance
|
SQL injection vulnerability in prodpage.cfm in SonicWALL Aventail allows remote attackers to execute arbitrary SQL commands via the CategoryID parameter.
|
CWE-89
SQL Injection
|
CVE-2011-5262
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297260
|
- |
|
axis
|
m10_series_network_cameras_firmware
m1054_network_camera
|
Cross-site scripting (XSS) vulnerability in serverreport.cgi in Axis M10 Series Network Cameras M1054 firmware 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2011-5261
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
