258411
|
- |
|
atmarkweb
|
\@web_shoppingcart_t \@web_shoppingcart
|
Cross-site scripting (XSS) vulnerability in WEBLOGIC @WEB ShoppingCart before 1.5.2.0, and @WEB ShoppingCart T 1.5.0.1 and earlier, allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2631
|
2012-06-15 23:55 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258412
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not properly restrict the reading of JSON strings, which allows remote attackers to perform cross-domain loading of JSON resources and consequently obtain sensitive informatio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3557
|
2012-06-15 22:45 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258413
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not properly restrict the opening of a pop-up window in response to the first click of a double-click action, which makes it easier for user-assisted remote attackers to condu…
|
CWE-20
Improper Input Validation
|
CVE-2012-3556
|
2012-06-15 22:39 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258414
|
- |
|
vmware
|
workstation player esx esxi
|
VMware Workstation 8.x before 8.0.4, VMware Player 4.x before 4.0.4, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow remote attackers to cause a denial of service (guest OS crash) v…
|
CWE-94
Code Injection
|
CVE-2012-3289
|
2012-06-15 13:00 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258415
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during unusually timed changes to this field, which makes it easier for user-assisted remote attackers …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3558
|
2012-06-15 13:00 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258416
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during blocked navigation, which makes it easier for remote attackers to conduct spoofing attacks by de…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3560
|
2012-06-15 13:00 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258417
|
- |
|
cisco
|
unified_communications_manager unified_presence_server
|
Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x, 7.x before 7.1(5b)su4, 8.0, and 8.5 before 8.5(1)su2 and Cisco Unified Presence Server 6.x, 7.x, 8.0, and 8.5 before 8.5xnr …
|
CWE-200
Information Exposure
|
CVE-2011-1643
|
2012-06-15 13:00 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258418
|
- |
|
cisco
|
unified_communications_manager
|
The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x does not properly handle idle TCP connections, which allows remote attackers to cause a denial …
|
CWE-399
Resource Management Errors
|
CVE-2011-2560
|
2012-06-15 13:00 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258419
|
- |
|
cisco
|
unified_communications_manager
|
The SIP process in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.x before 7.1(5b)su4 and 8.x before 8.0(1) does not properly handle SDP data within a SIP call in certain sit…
|
CWE-399
Resource Management Errors
|
CVE-2011-2561
|
2012-06-15 13:00 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258420
|
- |
|
cisco
|
unified_communications_manager
|
Unspecified vulnerability in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5)su2, 7.x before 7.1(5b)su3, 8.x before 8.0(3a)su1, and 8.5 before 8.5(1) allows rem…
|
NVD-CWE-noinfo
|
CVE-2011-2562
|
2012-06-15 13:00 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|