|
263631
|
- |
|
janetter
|
janetter
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Janetter before 3.3.0.0 (aka 3.3.0) allow remote attackers to hijack the authentication of arbitrary users for requests that (1) tweet, (…
|
CWE-352
Origin Validation Error
|
CVE-2012-1236
|
2012-06-9 12:41 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263632
|
- |
|
cisco
|
ciscoworks_common_services
|
CRLF injection vulnerability in autologin.jsp in Cisco CiscoWorks Common Services 4.0, as used in Cisco Prime LAN Management Solution and other products, allows remote attackers to inject arbitrary H…
|
CWE-94
Code Injection
|
CVE-2011-4237
|
2012-06-9 12:38 |
2012-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263633
|
- |
|
cisco
|
secure_access_control_server
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to hijack the authentication of administrators…
|
CWE-352
Origin Validation Error
|
CVE-2011-3293
|
2012-06-9 12:36 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263634
|
- |
|
cisco
|
secure_access_control_server
|
Multiple cross-site scripting (XSS) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to inject arbitrary web script or HTML via unspecifie…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3317
|
2012-06-9 12:36 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263635
|
- |
|
opera
|
opera_browser
|
Unspecified vulnerability in Opera before 9.24 allows remote attackers to overwrite functions on pages from other domains and bypass the same-origin policy via unknown vectors.
|
CWE-20
Improper Input Validation
|
CVE-2007-5540
|
2012-06-8 06:14 |
2007-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263636
|
- |
|
opera
|
opera_browser
|
Opera before 9.26 allows remote attackers to "bypass sanitization filters" and conduct cross-site scripting (XSS) attacks via crafted attribute values in an XML document, which are not properly handl…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1082
|
2012-06-8 03:06 |
2008-02-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263637
|
- |
|
opera
|
opera_browser
|
Opera before 9.26 allows user-assisted remote attackers to execute arbitrary script via images that contain custom comments, which are treated as script when the user displays the image properties.
|
CWE-94
Code Injection
|
CVE-2008-1081
|
2012-06-8 03:02 |
2008-02-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263638
|
- |
|
opera
|
opera_browser
|
Opera before 9.26 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename into a file input.
|
CWE-20
Improper Input Validation
|
CVE-2008-1080
|
2012-06-8 02:58 |
2008-02-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263639
|
- |
|
opera
|
opera_browser
|
Opera before 9.63 does not block unspecified "scripted URLs" during the feed preview, which allows remote attackers to read existing subscriptions and force subscriptions to arbitrary feed URLs.
|
NVD-CWE-Other
|
CVE-2008-5681
|
2012-06-8 02:24 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263640
|
- |
|
opera
|
opera_browser
|
Cross-site scripting (XSS) vulnerability in Opera before 9.63 allows remote attackers to inject arbitrary web script or HTML via built-in XSLT templates.
|
CWE-79
Cross-site Scripting
|
CVE-2008-5682
|
2012-06-8 02:22 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
