|
292791
|
- |
|
atutor
|
atutor
|
Multiple cross-site scripting (XSS) vulnerabilities in ATutor before 2.1 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) themes/default/tile_search/index.tmpl.p…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6528
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292792
|
- |
|
joedolson
wordpress
|
my_calendar
wordpress
|
Cross-site scripting (XSS) vulnerability in the My Calendar plugin before 1.10.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6527
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292793
|
- |
|
vastal
|
freelance_zone
|
SQL injection vulnerability in show_code.php in Vastal I-Tech Freelance Zone allows remote attackers to execute arbitrary SQL commands via the code_id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6526
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292794
|
- |
|
phpbridges_dev_team
|
phpbridges
|
SQL injection vulnerability in members.php in PHPBridges allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6525
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292795
|
- |
|
powie
|
pgb
|
SQL injection vulnerability in kommentar.php in pGB 2.12 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6524
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292796
|
- |
|
w-cms
|
w-cms
|
Multiple cross-site scripting (XSS) vulnerabilities in w-CMS 2.01 allow remote attackers to inject arbitrary web script or HTML via (1) the p parameter in the getMenus function in codes/wcms.php; or …
|
CWE-79
Cross-site Scripting
|
CVE-2012-6523
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292797
|
- |
|
w-cms
|
w-cms
|
Directory traversal vulnerability in the getContent function in codes/wcms.php in w-CMS 2.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the p parameter. NOTE: some of thes…
|
CWE-22
Path Traversal
|
CVE-2012-6522
|
2024-11-21 10:46 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292798
|
- |
|
foxitsoftware
|
foxit_advanced_pdf_editor
|
Stack-based buffer overflow in Foxit Advanced PDF Editor 3 before 3.04 might allow remote attackers to execute arbitrary code via a crafted document containing instructions that reconstruct a certain…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0107
|
2024-11-21 10:46 |
2013-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292799
|
- |
|
rockwellautomation
|
ethernet\/ip_firmware
compactlogix_firmware
flexlogix_firmware
flex_i\/o_ethernet\/ip__firmware
micrologix_firmware
softlogix_controllers_firmware
compactlogix_controllers_firmware<…
|
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6442
|
2024-11-21 10:46 |
2013-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292800
|
- |
|
rockwellautomation
|
guardlogix_controllers
compactlogix_controllers
1794-aentr_flex_i\/o_ethernet\/ip_adapter
flexlogix_1788-enbt_adapter
micrologix
guardlogix
1768-enbt
1756-enbt
compactlogix
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/…
|
CWE-200
Information Exposure
|
CVE-2012-6441
|
2024-11-21 10:46 |
2013-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
