|
296371
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_soa_platform
jboss_enterprise_web_platform
jboss_enterprise_brms_platform
|
The JBoss Server in JBoss Enterprise Application Platform 5.1.x before 5.1.2 and 5.2.x before 5.2.2, Web Platform before 5.1.2, BRMS Platform before 5.3.0, and SOA Platform before 5.3.0, when the ser…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1167
|
2024-11-21 10:36 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296372
|
- |
|
redhat
|
mod_cluster
jboss_enterprise_application_platform
|
mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1154
|
2024-11-21 10:36 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296373
|
- |
|
socialcms
|
socialcms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in SocialCMS 1.0.2 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrator accounts vi…
|
CWE-352
Origin Validation Error
|
CVE-2012-1416
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296374
|
- |
|
dlink
|
dsl-2640b_firmware
dsl-2640b
|
Cross-site request forgery (CSRF) vulnerability in redpass.cgi in D-Link DSL-2640B Firmware EU_4.00 allows remote attackers to hijack the authentication of administrators for requests that change the…
|
CWE-352
Origin Validation Error
|
CVE-2012-1308
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296375
|
- |
|
bernhard_wymann
speed-dreams
|
torcs
speed_dreams
|
Stack-based buffer overflow in modules/graphic/ssgraph/grsound.cpp in The Open Racing Car Simulator (TORCS) before 1.3.3 and Speed Dreams allows user-assisted remote attackers to execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1189
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296376
|
- |
|
kishore_asokan
|
kish_guest_posting_plugin
|
Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin before 1.2 for WordPress allows remote attackers to execute arbitrary code by uploading a fi…
|
NVD-CWE-Other
|
CVE-2012-1125
|
2024-11-21 10:36 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296377
|
- |
|
plume-cms
|
plume_cms
|
Cross-site request forgery (CSRF) vulnerability in manager/news.php in Plume CMS 1.2.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that create News…
|
CWE-352
Origin Validation Error
|
CVE-2012-1414
|
2024-11-21 10:36 |
2012-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296378
|
- |
|
apprain
|
apprain
|
Unrestricted file upload vulnerability in addons/uploadify/uploadify.php in appRain CMF 0.1.5 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable exte…
|
NVD-CWE-Other
|
CVE-2012-1153
|
2024-11-21 10:36 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296379
|
- |
|
impresscms
|
impresscms
|
Directory traversal vulnerability in edituser.php in ImpressCMS 1.2.x before 1.2.7 Final and 1.3.x before 1.3.1 Final allows remote authenticated users to include and execute arbitrary local files vi…
|
CWE-22
Path Traversal
|
CVE-2012-0987
|
2024-11-21 10:36 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296380
|
- |
|
impresscms
|
impresscms
|
Multiple cross-site scripting (XSS) vulnerabilities in ImpressCMS 1.2.x before 1.2.7 Final and 1.3.x before 1.3.1 Final allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0986
|
2024-11-21 10:36 |
2012-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
