261311
|
- |
|
hp
|
web_jetadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in HP Web Jetadmin 8.x allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2011
|
2013-03-22 12:09 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261312
|
- |
|
hp
|
photosmart_e-all-in-one_printer_series photosmart_estation_all-in-one-printer_series photosmart_ink_advantage_e-all-in-one photosmart_plus_e-all-in-one_printer_series photosmart_premium_f…
|
Unspecified vulnerability on HP Photosmart Wireless e-All-in-One B110, e-All-in-One D110, Plus e-All-in-One B210, eStation All-in-One C510, Ink Advantage e-All-in-One K510, and Premium Fax e-All-in-O…
|
NVD-CWE-noinfo
|
CVE-2012-2017
|
2013-03-22 12:09 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261313
|
- |
|
hp
|
network_node_manager_i
|
Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 8.x, 9.0x, and 9.1x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2018
|
2013-03-22 12:09 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261314
|
- |
|
selinc
|
acselerator_quickset
|
Schweitzer Engineering Laboratories (SEL) AcSELerator QuickSet before 5.12.0.1 uses weak permissions for its Program Files directory, which allows local users to replace executable files, and consequ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0665
|
2013-03-22 06:04 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261315
|
- |
|
redhat
|
libvirt
|
libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1766
|
2013-03-22 01:34 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261316
|
- |
|
zoneminder
|
zoneminder
|
Multiple directory traversal vulnerabilities in ZoneMinder 1.24.x before 1.24.4 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) view, (2) request, or (3) action parameter.
|
CWE-22
Path Traversal
|
CVE-2013-0332
|
2013-03-22 01:31 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261317
|
- |
|
zugec_ivan
|
keyboard_shortcut_utility
|
The Keyboard Shortcut Utility module 7.x-1.x before 7.x-1.1 for Drupal does not properly check node restrictions, which allows (1) remote authenticated users with the "view shortcuts" permission to r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0226
|
2013-03-21 23:45 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261318
|
- |
|
leighton_whiting
|
mark_complete
|
Cross-site request forgery (CSRF) vulnerability in the Mark Complete module 7.x-1.x before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown v…
|
CWE-352
Origin Validation Error
|
CVE-2013-0207
|
2013-03-21 23:21 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261319
|
- |
|
debian
|
latd
|
Stack-based buffer overflow in llogincircuit.cc in latd 1.25 through 1.30 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long strin…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0251
|
2013-03-21 21:00 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261320
|
- |
|
guy_bedford
|
live_css
|
Unrestricted file upload vulnerability in the Live CSS module 6.x-2.x before 6.x-2.1 and 7.x-2.x before 7.x-2.7 for Drupal allows remote authenticated users with the "administer CSS" permissions to e…
|
NVD-CWE-Other
|
CVE-2013-0206
|
2013-03-21 18:26 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|