|
294691
|
- |
|
vessio
|
netbill
|
Cross-site request forgery (CSRF) vulnerability in accounts/admin/index.php in Vessio NetBill 1.2 allows remote attackers to hijack the authentication of administrators for requests that add accounts…
|
CWE-352
Origin Validation Error
|
CVE-2012-6631
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294692
|
- |
|
rick_mead
|
media_library_categories
|
Multiple cross-site scripting (XSS) vulnerabilities in the Media Library Categories plugin 1.1.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) bulk parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6630
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294693
|
- |
|
xyzscripts
|
newsletter_manager
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Newsletter Manager plugin 1.0.2 and earlier for WordPress allow remote attackers to hijack the authentication of administrators for r…
|
CWE-352
Origin Validation Error
|
CVE-2012-6629
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294694
|
- |
|
xyzscripts
|
newsletter_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the Newsletter Manager plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) xyz_em_campNa…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6628
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294695
|
- |
|
xyzscripts
|
newsletter_manager
|
Cross-site scripting (XSS) vulnerability in admin/test_mail.php in the Newsletter Manager plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6627
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294696
|
- |
|
brian_cabunac
|
browser_to_email_phone_message_system
|
SQL injection vulnerability in verify-user.php in b2ePMS 1.0 allows remote attackers to execute arbitrary SQL commands via the username field.
|
CWE-89
SQL Injection
|
CVE-2012-6626
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294697
|
- |
|
vasthtml
|
forumpress
|
SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress WP Forum Server plugin before 1.7.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the groupid para…
|
CWE-89
SQL Injection
|
CVE-2012-6625
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294698
|
- |
|
mightymess
|
soundcloud_is_gold
|
Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold plugin 2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the width parameter in a soundcloud_is_g…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6624
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294699
|
- |
|
vasthtml
|
forumpress
|
Cross-site scripting (XSS) vulnerability in fs-admin/wpf-add-forum.php in the ForumPress WP Forum Server plugin before 1.7.5 for WordPress allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6623
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294700
|
- |
|
vasthtml
|
forumpress
|
Multiple cross-site scripting (XSS) vulnerabilities in fs-admin/fs-admin.php in the ForumPress WP Forum Server plugin before 1.7.4 for WordPress allow remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2012-6622
|
2024-11-21 10:46 |
2014-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
