259051
|
- |
|
lepton-cms
|
lepton
|
Multiple cross-site scripting (XSS) vulnerabilities in LEPTON 1.1.3 and other versions before 1.1.4 allow remote attackers to inject arbitrary web script or HTML via the (1) message parameter to admi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1000
|
2012-02-24 22:55 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259052
|
- |
|
alanft
|
relocate-upload
|
PHP remote file inclusion vulnerability in relocate-upload.php in Relocate Upload plugin before 0.20 for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the abspath param…
|
CWE-94
Code Injection
|
CVE-2012-1205
|
2012-02-24 22:55 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259053
|
- |
|
fork-cms
|
fork_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in backend/core/engine/base.php in Fork CMS 3.2.4 and possibly other versions before 3.2.5 allow remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1208
|
2012-02-24 22:55 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259054
|
- |
|
7t
|
aquis
|
Untrusted search path vulnerability in 7-Technologies (7T) AQUIS 1.5 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerabili…
|
NVD-CWE-Other
|
CVE-2012-0224
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259055
|
- |
|
7t
|
aquis
|
Per: http://www.us-cert.gov/control_systems/pdf/ICSA-12-025-02.pdf
'This vulnerability may be exploitable from a remote machine'
|
NVD-CWE-Other
|
CVE-2012-0224
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259056
|
- |
|
7t
|
aquis
|
Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2012-0224
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259057
|
- |
|
boonex
|
dolphin
|
Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin before 7.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) explain parameter to explanation.php or th…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0873
|
2012-02-24 14:00 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259058
|
- |
|
pbboard
|
pbboard
|
Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in PBBoard 2.1.4 allow remote attackers to hijack the authentication of administrators for requests that (1) upload a file via …
|
CWE-352
Origin Validation Error
|
CVE-2012-1216
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259059
|
- |
|
pluck-cms
|
pluck
|
Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in pluck 4.7 allow remote attackers to hijack the authentication of admins for requests that (1) modify the admin email address…
|
CWE-352
Origin Validation Error
|
CVE-2012-1227
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259060
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in b2b/auction/container.jsp in the Internet Sales (crm.b2b) module in SAP NetWeaver 7.0 allows remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1290
|
2012-02-24 14:00 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|