|
257961
|
7.5 |
HIGH
Network
|
open-xchange
|
open-xchange_appsuite
|
OX Software GmbH App Suite 7.8.4 and earlier is affected by: Information Exposure.
|
CWE-200
Information Exposure
|
CVE-2017-12884
|
2024-11-21 12:10 |
2019-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257962
|
6.1 |
MEDIUM
Network
|
open-xchange
|
open-xchange_appsuite
|
OX Software GmbH App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS).
|
CWE-79
Cross-site Scripting
|
CVE-2017-12885
|
2024-11-21 12:10 |
2019-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257963
|
9.8 |
CRITICAL
Network
|
openmrs
|
openmrs-module-htmlformentry
|
OpenMRS openmrs-module-htmlformentry 3.3.2 is affected by: (Improper Input Validation).
|
CWE-20
Improper Input Validation
|
CVE-2017-12795
|
2024-11-21 12:10 |
2019-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257964
|
8.8 |
HIGH
Network
|
metinfo
|
metinfo
|
Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/interface/online/delete.php. The attack vector is: The admini…
|
CWE-352
Origin Validation Error
|
CVE-2017-12789
|
2024-11-21 12:10 |
2019-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257965
|
7.5 |
HIGH
Network
|
webfile_explorer_project
|
webfile_explorer
|
http://codecanyon.net/user/Endober WebFile Explorer 1.0 is affected by: SQL Injection. The impact is: Arbitrary File Download (remote). The component is: $file = $_GET['id'] in download.php. The atta…
|
CWE-89
SQL Injection
|
CVE-2017-12761
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257966
|
8.8 |
HIGH
Network
|
ynetinteractive
|
mobiketa
|
Ynet Interactive - http://demo.ynetinteractive.com/mobiketa/ Mobiketa 4.0 is affected by: SQL Injection. The impact is: Code execution (remote).
|
CWE-89
SQL Injection
|
CVE-2017-12760
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257967
|
9.8 |
CRITICAL
Network
|
ynetinteractive
|
soa_school_management
|
Ynet Interactive - http://demo.ynetinteractive.com/soa/ SOA School Management 3.0 is affected by: SQL Injection. The impact is: Code execution (remote).
|
CWE-89
SQL Injection
|
CVE-2017-12759
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257968
|
9.8 |
CRITICAL
Network
|
joomlaextensions
|
component_appointment
|
https://www.joomlaextensions.co.in/ Joomla! Component Appointment 1.1 is affected by: SQL Injection. The impact is: Code execution (remote). The component is: com_appointment component.
|
CWE-89
SQL Injection
|
CVE-2017-12758
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257969
|
9.8 |
CRITICAL
Network
|
ambittechnologies
|
itech_b2b_script
itech_travel_script
itech_social_networking_script
itech_multi_vendor_script
itech_movie_script
itech_job_script
itech_image_sharing_script
itech_freelancer_scri…
|
Certain Ambit Technologies Pvt. Ltd products are affected by: SQL Injection. This affects iTech B2B Script 4.42i and Tech Business Networking Script 8.26i and Tech Caregiver Script 2.71i and Tech Cla…
|
CWE-89
SQL Injection
|
CVE-2017-12757
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257970
|
8.3 |
HIGH
Network
|
mpg123
|
mpg123
|
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibl…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-12839
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
