|
297311
|
- |
|
ingy
|
yaml\
|
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML (aka YAML-LibYAML and perl-YAML-LibYAML) module 0.38 for Perl allow remote attackers to cause a denial…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-1152
|
2024-11-21 10:36 |
2012-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297312
|
- |
|
perl
|
perl
|
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (proce…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-1151
|
2024-11-21 10:36 |
2012-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297313
|
- |
|
open-realty
|
open-realty
|
Directory traversal vulnerability in Open-Realty CMS 2.5.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the select_users_template parameter t…
|
CWE-22
Path Traversal
|
CVE-2012-1112
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297314
|
- |
|
datemill
|
etano
|
Multiple cross-site scripting (XSS) vulnerabilities in Etano 1.22 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user, (2) email, (3) email2, (4) f17_zip, or (5…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1110
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297315
|
- |
|
scott_wheeler
|
taglib
|
The parse function in ogg/xiphcomment.cpp in TagLib 1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted vendorLength field in an ogg file.
|
CWE-20
Improper Input Validation
|
CVE-2012-1108
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297316
|
- |
|
scott_wheeler
|
taglib
|
The analyzeCurrent function in ape/apeproperties.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted sampleRate in an ape f…
|
NVD-CWE-noinfo
|
CVE-2012-1107
|
2024-11-21 10:36 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297317
|
- |
|
elefantcms
|
elefantcms
|
Multiple cross-site scripting (XSS) vulnerabilities in apps/admin/handlers/preview.php in Elefant CMS 1.0.x before 1.0.2-Beta and 1.1.x before 1.1.5-Beta allow remote attackers to inject arbitrary we…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1296
|
2024-11-21 10:36 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297318
|
- |
|
gnome
|
libgdata
|
libgdata before 0.10.2 and 0.11.x before 0.11.1 does not validate SSL certificates, which allows remote attackers to obtain user names and passwords via a man-in-the-middle (MITM) attack with a spoof…
|
CWE-20
Improper Input Validation
|
CVE-2012-1177
|
2024-11-21 10:36 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297319
|
- |
|
fribidi
|
pyfribidi
|
Buffer overflow in the fribidi_utf8_to_unicode function in PyFriBidi before 0.11.0 allows remote attackers to cause a denial of service (application crash) via a 4-byte utf-8 sequence.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1176
|
2024-11-21 10:36 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297320
|
- |
|
gnu
|
gnash
|
Integer overflow in the GnashImage::size method in libbase/GnashImage.h in GNU Gnash 0.8.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a craf…
|
CWE-189
Numeric Errors
|
CVE-2012-1175
|
2024-11-21 10:36 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
