|
304021
|
- |
|
pippin_williamson
|
font_uploader
|
Unrestricted file upload vulnerability in font-upload.php in the Font Uploader plugin 1.2.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file with a .php.ttf…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3814
|
2024-11-21 10:41 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304022
|
- |
|
peter_pokrivcak
|
post_affiliate_pro
|
Unspecified vulnerability in the Post Affiliate Pro (PAP) module for Drupal allows remote authenticated users to read the commissions of other users via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-3802
|
2024-11-21 10:41 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304023
|
- |
|
moshe_weitzman
|
organic_groups
|
Cross-site scripting (XSS) vulnerability in og.js in the Organic Groups (OG) module 6.x-2.x before 6.x-2.4 for Drupal, when used with the Vertical Tabs module, allows remote authenticated users to in…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3800
|
2024-11-21 10:41 |
2012-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304024
|
- |
|
blaine_lang
|
maestro
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Maestro module 7.x-1.x before 7.x-1.2 for Drupal allow remote attackers to hijack the authentication of administrators for requests t…
|
CWE-352
Origin Validation Error
|
CVE-2012-3799
|
2024-11-21 10:41 |
2012-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304025
|
- |
|
bryce_hamrick
|
janrain_capture
|
The Janrain Capture module 6.x-1.0 and 7.x-1.0 for Drupal, when creating a local user account, allows attackers to obtain part of the initial input used to generate passwords, which makes it easier t…
|
CWE-200
Information Exposure
|
CVE-2012-3798
|
2024-11-21 10:41 |
2012-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304026
|
- |
|
pro-face
|
pro-server_ex
wingp_pc_runtime
|
Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, does not properly check packet sizes before reusing packet memory buffers, which allows …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3797
|
2024-11-21 10:41 |
2012-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304027
|
- |
|
pro-face
|
pro-server_ex
wingp_pc_runtime
|
Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, allows remote attackers to obtain sensitive information from daemon memory via a crafted…
|
CWE-200
Information Exposure
|
CVE-2012-3796
|
2024-11-21 10:41 |
2012-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304028
|
- |
|
pro-face
|
pro-server_ex
wingp_pc_runtime
|
Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, allows remote attackers to cause a denial of service (daemon crash) via a crafted packet…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3795
|
2024-11-21 10:41 |
2012-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304029
|
- |
|
pro-face
|
pro-server_ex
wingp_pc_runtime
|
Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, allows remote attackers to cause a denial of service (unhandled exception and daemon cra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3794
|
2024-11-21 10:41 |
2012-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304030
|
- |
|
pro-face
|
pro-server_ex
wingp_pc_runtime
|
Integer overflow in Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, allows remote attackers to cause a denial of service (daemon crash) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3793
|
2024-11-21 10:41 |
2012-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
