|
301391
|
- |
|
jamf
|
casper_suite
|
Multiple cross-site request forgery (CSRF) vulnerabilities in editAccount.html in the JAMF Software Server (JSS) interface in JAMF Casper Suite before 8.61 allow remote attackers to hijack the authen…
|
CWE-352
Origin Validation Error
|
CVE-2012-4051
|
2024-11-21 10:42 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301392
|
- |
|
jb\+
|
jigbrowser\+
|
The jigbrowser+ application before 1.5.0 for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
|
CWE-94
Code Injection
|
CVE-2012-4017
|
2024-11-21 10:42 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301393
|
- |
|
justsystems
|
atok
|
The ATOK application before 1.0.4 for Android allows remote attackers to read the learning information file, and obtain sensitive input-string information, via a crafted application.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4016
|
2024-11-21 10:42 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301394
|
- |
|
mylittletools
|
mylittleadmin
|
Cross-site scripting (XSS) vulnerability in the management screen in myLittleTools myLittleAdmin for SQL Server 2000 allows remote attackers to inject arbitrary web script or HTML via vectors that tr…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4015
|
2024-11-21 10:42 |
2012-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301395
|
- |
|
mcafee
|
email_and_web_security
|
Unspecified vulnerability in McAfee Email Anti-virus (formerly WebShield SMTP) allows remote attackers to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-4014
|
2024-11-21 10:42 |
2012-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301396
|
- |
|
moodle
|
moodle
|
course/reset.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 checks an update capability instead of a reset capability, which allows remote authenticated users to bypass …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4408
|
2024-11-21 10:42 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301397
|
- |
|
moodle
|
moodle
|
lib/filelib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly check the publication state of blog files, which allows remote attackers to obtain sensitive…
|
CWE-200
Information Exposure
|
CVE-2012-4407
|
2024-11-21 10:42 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301398
|
- |
|
moodle
|
moodle
|
theme/yui_combo.php in Moodle 2.3.x before 2.3.2 does not properly construct error responses for the drag-and-drop script, which allows remote attackers to obtain the installation path by sending a r…
|
CWE-200
Information Exposure
|
CVE-2012-4403
|
2024-11-21 10:42 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301399
|
- |
|
moodle
|
moodle
|
webservice/lib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly restrict the use of web-service tokens, which allows remote authenticated users to run ar…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4402
|
2024-11-21 10:42 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301400
|
- |
|
moodle
|
moodle
|
Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended capability restrictions and perform certain topic changes by leveraging course-editing capabiliti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4401
|
2024-11-21 10:42 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
