|
303191
|
- |
|
x
xkeyboard_config_project
|
x.org_x11
xkeyboard-config
|
xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations th…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0064
|
2024-11-21 10:34 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303192
|
- |
|
redhat
|
network_proxy
satellite
|
Spacewalk-backend in Red Hat Network (RHN) Satellite and Proxy 5.4 includes cleartext user passwords in an error message when a system registration XML-RPC call fails, which allows remote administrat…
|
CWE-310
Cryptographic Issues
|
CVE-2012-0059
|
2024-11-21 10:34 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303193
|
- |
|
wordpress
|
wordpress
|
wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publish_posts capability requirement, which allows remote authenticated users to perform publish actions by leveraging the Contr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5270
|
2024-11-21 10:34 |
2014-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303194
|
- |
|
projectforge
|
projectforge
|
Cross-site scripting (XSS) vulnerability in ProjectForge before 3.5.3 allows remote authenticated users to inject arbitrary web script or HTML via a validation message.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5269
|
2024-11-21 10:34 |
2014-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303195
|
- |
|
op5
|
monitor
|
op5 Monitor and op5 Appliance before 5.5.0 do not properly manage session cookies, which allows remote attackers to have an unspecified impact via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0264
|
2024-11-21 10:34 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303196
|
- |
|
op5
|
monitor
|
monitor/index.php in op5 Monitor and op5 Appliance before 5.5.1 allows remote authenticated users to obtain sensitive information such as database and user credentials via error messages that are tri…
|
CWE-200
Information Exposure
|
CVE-2012-0263
|
2024-11-21 10:34 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303197
|
- |
|
op5
|
monitor
system-op5config
|
op5config/welcome in system-op5config before 2.0.3 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the password paramet…
|
CWE-94
Code Injection
|
CVE-2012-0262
|
2024-11-21 10:34 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303198
|
- |
|
op5
|
monitor
system-portal
|
license.php in system-portal before 1.6.2 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the timestamp parameter for a…
|
CWE-94
Code Injection
|
CVE-2012-0261
|
2024-11-21 10:34 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303199
|
- |
|
duckcorp
fedoraproject
|
bip
fedora
|
connection.c in Bip before 0.8.9 does not properly close sockets, which allows remote attackers to cause a denial of service (file descriptor consumption and crash) via multiple failed SSL handshakes…
|
CWE-310
Cryptographic Issues
|
CVE-2011-5268
|
2024-11-21 10:34 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303200
|
- |
|
novell
|
suse_cloud
|
The server in Crowbar, as used in SUSE Cloud 1.0, uses weak permissions for the production.log file, which has unspecified impact and attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0434
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
