|
299581
|
- |
|
ckeditor
|
fckeditor
ckeditor
|
Cross-site scripting (XSS) vulnerability in the FCKeditor module 6.x-2.x before 6.x-2.3 and the CKEditor module 6.x-1.x before 6.x-1.9 and 7.x-1.x before 7.x-1.7 for Drupal allows remote authenticate…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2066
|
2024-11-21 10:38 |
2012-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299582
|
- |
|
freso
|
languageicons
|
Cross-site scripting (XSS) vulnerability in the Language Icons module 6.x-2.x before 6.x-2.1 and 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with administer languages permissi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2065
|
2024-11-21 10:38 |
2012-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299583
|
- |
|
mark_theunissen
|
views_lang_switch
|
Cross-site scripting (XSS) vulnerability in theme/views_lang_switch.theme.inc in the Views Language Switcher module before 7.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2064
|
2024-11-21 10:38 |
2012-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299584
|
- |
|
brian_altenhofel
|
slidebox
|
The Slidebox module before 7.x-1.4 for Drupal does not properly check permissions, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2063
|
2024-11-21 10:38 |
2012-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299585
|
- |
|
buddypress
|
buddypress
|
SQL injection vulnerability in wp-load.php in the BuddyPress plugin 1.5.x before 1.5.5 of WordPress allows remote attackers to execute arbitrary SQL commands via the page parameter in an activity_wid…
|
CWE-89
SQL Injection
|
CVE-2012-2109
|
2024-11-21 10:38 |
2012-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299586
|
- |
|
emc
|
networker
|
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specif…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-2288
|
2024-11-21 10:38 |
2012-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299587
|
- |
|
yaniv_aran-shamir
|
gigya
|
Cross-site scripting (XSS) vulnerability in the Gigya - Social optimization module 6.x before 6.x-3.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2117
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299588
|
- |
|
commerceguys
|
commerce_reorder
|
Cross-site request forgery (CSRF) vulnerability in the Commerce Reorder module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of arbitrary users for requests that add …
|
CWE-352
Origin Validation Error
|
CVE-2012-2116
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299589
|
- |
|
etalabs
|
musl
|
Stack-based buffer overflow in fprintf in musl before 0.8.8 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2114
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299590
|
- |
|
fusiondrupalthemes
|
fusion
|
Cross-site scripting (XSS) vulnerability in the fusion_core_preprocess_page function in fusion_core/template.php in the Fusion module before 6.x-1.13 for Drupal allows remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2083
|
2024-11-21 10:38 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
