|
304491
|
- |
|
apple
|
iphone_os
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability …
|
CWE-79
Cross-site Scripting
|
CVE-2012-0587
|
2024-11-21 10:35 |
2012-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304492
|
- |
|
apple
|
iphone_os
|
Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability …
|
CWE-79
Cross-site Scripting
|
CVE-2012-0586
|
2024-11-21 10:35 |
2012-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304493
|
- |
|
apple
|
iphone_os
|
The Private Browsing feature in Safari in Apple iOS before 5.1 allows remote attackers to bypass intended privacy settings and insert history entries via JavaScript code that calls the (1) pushState …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0585
|
2024-11-21 10:35 |
2012-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304494
|
- |
|
adobe
|
flash_player
flash_player_for_android
|
Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 on Android 4.x does not pro…
|
CWE-189
Numeric Errors
|
CVE-2012-0769
|
2024-11-21 10:35 |
2012-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304495
|
- |
|
adobe
|
flash_player
flash_player_for_android
|
The Matrix3D component in Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 o…
|
CWE-399
Resource Management Errors
|
CVE-2012-0768
|
2024-11-21 10:35 |
2012-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304496
|
- |
|
apache
|
struts
|
Apache Struts 2 before 2.2.3.1 evaluates a string as an OGNL expression during the handling of a conversion error, which allows remote attackers to modify run-time data values, and consequently execu…
|
CWE-20
Improper Input Validation
|
CVE-2012-0838
|
2024-11-21 10:35 |
2012-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304497
|
- |
|
ibm
|
ilog_jviews_gantt
tivoli_change_and_configuration_management_database
|
Cross-site scripting (XSS) vulnerability in the Gantt applet viewer in IBM Tivoli Change and Configuration Management Database (CCMDB) 7.2.1 and IBM ILOG JViews Gantt allows remote attackers to injec…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0715
|
2024-11-21 10:35 |
2012-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304498
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in xmlrpc.cgi in Bugzilla 4.0.2 through 4.0.4 and 4.1.1 through 4.2rc2, when mod_perl is used, allows remote attackers to hijack the authentication of …
|
CWE-352
Origin Validation Error
|
CVE-2012-0453
|
2024-11-21 10:35 |
2012-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304499
|
- |
|
boonex
|
dolphin
|
Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin before 7.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) explain parameter to explanation.php or th…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0873
|
2024-11-21 10:35 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304500
|
- |
|
webmproject
|
libvpx
|
VP8 Codec SDK (libvpx) before 1.0.0 "Duclair" allows remote attackers to cause a denial of service (application crash) via (1) unspecified "corrupt input" or (2) by "starting decoding from a P-frame,…
|
CWE-20
Improper Input Validation
|
CVE-2012-0823
|
2024-11-21 10:35 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
