|
298661
|
- |
|
efstechnology
|
autoform_pdm_archive
|
Multiple cross-site scripting (XSS) vulnerabilities in AutoFORM PDM Archive before 6.920 allow remote authenticated users to inject arbitrary web script or HTML via unspecified fields.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1829
|
2024-11-21 10:37 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298662
|
- |
|
efstechnology
|
autoform_pdm_archive
|
The administrative functions in AutoFORM PDM Archive before 7.1 do not have authorization requirements, which allows remote authenticated users to perform administrative actions by leveraging knowled…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1828
|
2024-11-21 10:37 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298663
|
- |
|
efstechnology
|
autoform_pdm_archive
|
The web service in AutoFORM PDM Archive before 7.1 does not have authorization requirements, which allows remote authenticated users to perform database operations via a SOAP request, as demonstrated…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1827
|
2024-11-21 10:37 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298664
|
- |
|
quagga
|
quagga
|
The bgp_capability_orf function in bgpd in Quagga 0.99.20.1 and earlier allows remote attackers to cause a denial of service (assertion failure and daemon exit) by leveraging a BGP peering relationsh…
|
NVD-CWE-Other
|
CVE-2012-1820
|
2024-11-21 10:37 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298665
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 9 does not block cross-domain scrolling events, which allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka…
|
CWE-200
Information Exposure
|
CVE-2012-1882
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298666
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 8 and 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "OnRowsInserted Event Remote…
|
CWE-94
Code Injection
|
CVE-2012-1881
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298667
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "insertRow Remote Code E…
|
CWE-94
Code Injection
|
CVE-2012-1880
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298668
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by attempting to access an undefined memory location, aka "…
|
CWE-94
Code Injection
|
CVE-2012-1879
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298669
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "OnBeforeDeactivate Even…
|
CWE-94
Code Injection
|
CVE-2012-1878
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298670
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "Title Element Change Re…
|
CWE-94
Code Injection
|
CVE-2012-1877
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
