|
294371
|
- |
|
google
|
chrome
|
Google Chrome before 18.0.1025308 on Android does not properly restrict access to file: URLs, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4903
|
2024-11-21 10:43 |
2012-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294372
|
- |
|
cisco
|
asa_cx_context-aware_security
prime_security_manager
|
The Cisco ASA-CX Context-Aware Security module before 9.0.2-103 for Adaptive Security Appliances (ASA) devices, and Prime Security Manager (aka PRSM) before 9.0.2-103, allows remote attackers to caus…
|
CWE-399
Resource Management Errors
|
CVE-2012-4629
|
2024-11-21 10:43 |
2012-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294373
|
- |
|
gentoo
|
webmin
|
Multiple cross-site request forgery (CSRF) vulnerabilities in file/show.cgi in Webmin 1.590 and earlier allow remote attackers to hijack the authentication of privileged users for requests that (1) r…
|
CWE-352
Origin Validation Error
|
CVE-2012-4893
|
2024-11-21 10:43 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294374
|
- |
|
flatnux
|
flatnux
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2012-03.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title_en, (2) summary_en, or (3) bo…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4892
|
2024-11-21 10:43 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294375
|
- |
|
manageengine
|
firewall_analyzer
|
Cross-site scripting (XSS) vulnerability in fw/index2.do in ManageEngine Firewall Analyzer 7.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vector…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4891
|
2024-11-21 10:43 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294376
|
- |
|
flatnux
|
flatnux
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a (1) comment to the news, (2) title to t…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4890
|
2024-11-21 10:43 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294377
|
- |
|
manageengine
|
firewall_analyzer
|
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Firewall Analyzer 7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) subTab or (2) tab parameter to crea…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4889
|
2024-11-21 10:43 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294378
|
- |
|
mediawiki
|
mediawiki
|
The wikitext parser in MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 allows remote attackers to cause a denial of service (infinite loop) via certain input, as demonstrated by the padleft f…
|
NVD-CWE-noinfo
|
CVE-2012-4885
|
2024-11-21 10:43 |
2012-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294379
|
- |
|
3ds
|
3dvia_composer
|
Multiple untrusted search path vulnerabilities in 3DVIA Composer V6R2012 HF1 Build 6.8.1.1652 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) ibfs32.dll file in the curr…
|
NVD-CWE-Other
|
CVE-2012-4883
|
2024-11-21 10:43 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294380
|
- |
|
3ds
|
3d_xml_player
|
Multiple untrusted search path vulnerabilities in 3D XML Player 6.212.13.12076 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) JT0DevPhase.dll file in the current workin…
|
NVD-CWE-Other
|
CVE-2012-4882
|
2024-11-21 10:43 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
