|
296321
|
- |
|
cms-center
|
simple_web_content_management_system
|
Multiple SQL injection vulnerabilities in Simple Web Content Management System 1.1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) item_delete.php, (2) item_statu…
|
CWE-89
SQL Injection
|
CVE-2012-3791
|
2024-11-21 10:41 |
2012-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296322
|
- |
|
adiscon
|
loganalyzer
|
Cross-site scripting (XSS) vulnerability in index.php in Adiscon LogAnalyzer before 3.4.4 and 3.5.x before 3.5.5 allows remote attackers to inject arbitrary web script or HTML via the highlight param…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3790
|
2024-11-21 10:41 |
2012-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296323
|
- |
|
wordpress
|
plugin_newsletter_plugin
|
Directory traversal vulnerability in preview.php in the Plugin Newsletter plugin 1.5 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the data parameter.
|
CWE-22
Path Traversal
|
CVE-2012-3588
|
2024-11-21 10:41 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296324
|
- |
|
debian
|
advanced_package_tool
|
APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import keyrings, relies on GnuPG argument order and does not check GPG subkeys, which might allow remote attacker…
|
CWE-20
Improper Input Validation
|
CVE-2012-3587
|
2024-11-21 10:41 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296325
|
- |
|
digium
|
asterisk
|
chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10.x before 10.5.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon cr…
|
NVD-CWE-Other
|
CVE-2012-3553
|
2024-11-21 10:41 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296326
|
- |
|
wordpress
|
fcchat_widget
|
Unrestricted file upload vulnerability in html/Upload.php in the FCChat Widget plugin 2.2.13.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with a f…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3578
|
2024-11-21 10:41 |
2012-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296327
|
- |
|
nmedia
|
member_conversation
|
Unrestricted file upload vulnerability in doupload.php in the Nmedia Member Conversation plugin before 1.4 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3577
|
2024-11-21 10:41 |
2012-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296328
|
- |
|
jquindlen
|
wpstorecart
|
Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3576
|
2024-11-21 10:41 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296329
|
- |
|
rbx_gallery
|
rbx_gallery
|
Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3575
|
2024-11-21 10:41 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296330
|
- |
|
tbelmans
|
mm_forms_community
|
Unrestricted file upload vulnerability in includes/doajaxfileupload.php in the MM Forms Community plugin 2.2.5 and 2.2.6 for WordPress allows remote attackers to execute arbitrary code by uploading a…
|
NVD-CWE-Other
|
CVE-2012-3574
|
2024-11-21 10:41 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
