258431
|
- |
|
siemens
|
wincc
|
Multiple cross-site scripting (XSS) vulnerabilities in unspecified web applications in Siemens WinCC 7.0 SP3 before Update 2 allow remote attackers to inject arbitrary web script or HTML via vectors …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2595
|
2012-06-12 13:00 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258432
|
- |
|
siemens
|
wincc
|
The XPath functionality in unspecified web applications in Siemens WinCC 7.0 SP3 before Update 2 does not properly handle special characters in parameters, which allows remote authenticated users to …
|
CWE-94
Code Injection
|
CVE-2012-2596
|
2012-06-12 13:00 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258433
|
- |
|
siemens
|
wincc
|
Multiple directory traversal vulnerabilities in Siemens WinCC 7.0 SP3 before Update 2 allow remote authenticated users to read arbitrary files via a crafted parameter in a URL.
|
CWE-22
Path Traversal
|
CVE-2012-2597
|
2012-06-12 13:00 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258434
|
- |
|
siemens
|
wincc
|
Buffer overflow in the DiagAgent web server in Siemens WinCC 7.0 SP3 through Update 2 allows remote attackers to cause a denial of service (agent outage) via crafted input.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2598
|
2012-06-12 13:00 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258435
|
- |
|
bmc
|
identity_management_suite
|
Cross-site request forgery (CSRF) vulnerability in password-manager/changePasswords.do in BMC Identity Management Suite 7.5.00.103 allows remote attackers to hijack the authentication of administrato…
|
CWE-352
Origin Validation Error
|
CVE-2012-2959
|
2012-06-12 13:00 |
2012-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258436
|
- |
|
siemens
|
wincc
|
Open redirect vulnerability in an unspecified web application in Siemens WinCC 7.0 SP3 before Update 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks vi…
|
CWE-20
Improper Input Validation
|
CVE-2012-3003
|
2012-06-12 13:00 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258437
|
- |
|
google acer samsung
|
chrome_os ac700_chromebook cr-48_chromebook chromebox_3 series_5_550_chromebook series_5_chromebook
|
Multiple unspecified vulnerabilities in Google Chrome before 20.0.1132.22 on the Acer AC700; Samsung Series 5, 5 550, and Chromebox 3; and Cr-48 Chromebook platforms have unknown impact and attack ve…
|
NVD-CWE-noinfo
|
CVE-2012-3290
|
2012-06-12 13:00 |
2012-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258438
|
- |
|
bloxx
|
web_filtering
|
Cross-site request forgery (CSRF) vulnerability in Microdasys before 3.5.1-B708, as used in Bloxx Web Filtering before 5.0.14 and other products, allows remote attackers to hijack the authentication …
|
CWE-352
Origin Validation Error
|
CVE-2012-3343
|
2012-06-11 13:00 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258439
|
- |
|
janetter
|
janetter
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Janetter before 3.3.0.0 (aka 3.3.0) allow remote attackers to hijack the authentication of arbitrary users for requests that (1) tweet, (…
|
CWE-352
Origin Validation Error
|
CVE-2012-1236
|
2012-06-9 12:41 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258440
|
- |
|
cisco
|
ciscoworks_common_services
|
CRLF injection vulnerability in autologin.jsp in Cisco CiscoWorks Common Services 4.0, as used in Cisco Prime LAN Management Solution and other products, allows remote attackers to inject arbitrary H…
|
CWE-94
Code Injection
|
CVE-2011-4237
|
2012-06-9 12:38 |
2012-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|