|
299931
|
- |
|
google
|
chrome
|
Google Chrome before 18.0.1025308 on Android does not properly restrict access from JavaScript code to Android APIs, which allows remote attackers to have an unspecified impact via a crafted web page.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4907
|
2024-11-21 10:43 |
2012-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299932
|
- |
|
google
|
chrome
|
Google Chrome before 18.0.1025308 on Android does not properly restrict access to file: URLs, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4906
|
2024-11-21 10:43 |
2012-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299933
|
- |
|
google
|
chrome
|
Cross-site scripting (XSS) vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script or HTML via an extra in an Intent object, aka "Universa…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4905
|
2024-11-21 10:43 |
2012-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299934
|
- |
|
google
|
chrome
|
Cross-application scripting vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script via unspecified vectors, as demonstrated by "Universal…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4904
|
2024-11-21 10:43 |
2012-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299935
|
- |
|
google
|
chrome
|
Google Chrome before 18.0.1025308 on Android does not properly restrict access to file: URLs, which allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4903
|
2024-11-21 10:43 |
2012-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299936
|
- |
|
cisco
|
asa_cx_context-aware_security
prime_security_manager
|
The Cisco ASA-CX Context-Aware Security module before 9.0.2-103 for Adaptive Security Appliances (ASA) devices, and Prime Security Manager (aka PRSM) before 9.0.2-103, allows remote attackers to caus…
|
CWE-399
Resource Management Errors
|
CVE-2012-4629
|
2024-11-21 10:43 |
2012-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299937
|
- |
|
gentoo
|
webmin
|
Multiple cross-site request forgery (CSRF) vulnerabilities in file/show.cgi in Webmin 1.590 and earlier allow remote attackers to hijack the authentication of privileged users for requests that (1) r…
|
CWE-352
Origin Validation Error
|
CVE-2012-4893
|
2024-11-21 10:43 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299938
|
- |
|
flatnux
|
flatnux
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2012-03.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title_en, (2) summary_en, or (3) bo…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4892
|
2024-11-21 10:43 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299939
|
- |
|
manageengine
|
firewall_analyzer
|
Cross-site scripting (XSS) vulnerability in fw/index2.do in ManageEngine Firewall Analyzer 7.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vector…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4891
|
2024-11-21 10:43 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299940
|
- |
|
flatnux
|
flatnux
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a (1) comment to the news, (2) title to t…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4890
|
2024-11-21 10:43 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
