|
257391
|
- |
|
palo_alto
|
global_protected_gateway
ssl_vpn
networks
|
Cross-site scripting (XSS) vulnerability in global-protect/login.esp in Palo Alto Networks Global Protect Portal, Global Protect Gateway, and SSL VPN portals 3.1.x through 3.1.11 and 4.0.x through 4.…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4043
|
2012-07-27 13:00 |
2012-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257392
|
- |
|
novell
|
zenworks_configuration_management
|
Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 ActiveX control in LaunchHelp.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.…
|
CWE-22
Path Traversal
|
CVE-2011-2657
|
2012-07-27 13:00 |
2012-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257393
|
- |
|
extplorer
|
extplorer
|
Cross-site request forgery (CSRF) vulnerability in eXtplorer 2.1 RC3 and earlier allows remote attackers to hijack the authentication of administrators for requests that add an administrator account …
|
CWE-352
Origin Validation Error
|
CVE-2012-3362
|
2012-07-27 12:40 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257394
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to read arbitrary files via a crafted web site.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3690
|
2012-07-26 23:23 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257395
|
- |
|
freebsd
netbsd
|
freebsd
netbsd
|
The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-…
|
CWE-189
Numeric Errors
|
CVE-2007-6754
|
2012-07-26 21:52 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257396
|
- |
|
kajona
|
kajona
|
Multiple cross-site scripting (XSS) vulnerabilities in the getAllPassedParams function in system/functions.php in Kajona before 3.4.2 allow remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3805
|
2012-07-26 13:00 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257397
|
- |
|
freebsd
netbsd
|
freebsd
netbsd
|
Integer overflow in the calloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD makes it easier for context-dependent attackers to perform memory-related attacks such a…
|
CWE-189
Numeric Errors
|
CVE-2006-7252
|
2012-07-26 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257398
|
- |
|
wordpress
|
wordpress
|
WordPress before 3.4.1 does not properly restrict access to post contents such as private or draft posts, which allows remote authors or contributors to obtain sensitive information via unknown vecto…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3385
|
2012-07-24 04:03 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257399
|
- |
|
libpng
|
libpng
|
Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 through 1.5.7 might allow remote attackers to cause a denial of service (application crash) and possibly execute a…
|
CWE-189
Numeric Errors
|
CVE-2011-3464
|
2012-07-23 13:00 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257400
|
- |
|
openbsd
|
openssh
|
The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory co…
|
CWE-189
Numeric Errors
|
CVE-2011-5000
|
2012-07-22 12:33 |
2012-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
