|
257561
|
- |
|
pluck-cms
|
pluck
|
Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in pluck 4.7 allow remote attackers to hijack the authentication of admins for requests that (1) modify the admin email address…
|
CWE-352
Origin Validation Error
|
CVE-2012-1227
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257562
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in b2b/auction/container.jsp in the Internet Sales (crm.b2b) module in SAP NetWeaver 7.0 allows remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1290
|
2012-02-24 14:00 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257563
|
- |
|
sap
|
netweaver
|
Unspecified vulnerability in the com.sap.aii.mdt.amt.web.AMTPageProcessor servlet in SAP NetWeaver 7.0 allows remote attackers to obtain sensitive information about the Adapter Monitor via unspecifie…
|
NVD-CWE-noinfo
|
CVE-2012-1291
|
2012-02-24 14:00 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257564
|
- |
|
novell
|
iprint
|
Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4187
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257565
|
- |
|
advantech
|
advantech_webaccess
|
SQL injection vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to execute arbitrary SQL commands via a malformed URL. NOTE: this vulnerability exists because of an…
|
CWE-89
SQL Injection
|
CVE-2012-1234
|
2012-02-23 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257566
|
- |
|
advantech
|
advantech_webaccess
|
Cross-site request forgery (CSRF) vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors. NOTE: t…
|
CWE-352
Origin Validation Error
|
CVE-2012-1235
|
2012-02-23 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257567
|
- |
|
advantech
|
adam_opc_server
modbus_rtu_opc_server
modbus_tcp_opc_server
|
Buffer overflow in the Advantech ADAM OLE for Process Control (OPC) Server ActiveX control in ADAM OPC Server before 3.01.012, Modbus RTU OPC Server before 3.01.010, and Modbus TCP OPC Server before …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1914
|
2012-02-23 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257568
|
- |
|
7t
|
termis
|
Untrusted search path vulnerability in 7-Technologies (7T) TERMIS 2.10 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerabi…
|
NVD-CWE-Other
|
CVE-2012-0223
|
2012-02-22 22:54 |
2012-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257569
|
- |
|
7t
|
termis
|
Per: http://www.us-cert.gov/control_systems/pdf/ICSA-12-025-02A.pdf
'This vulnerability may be exploitable from a remote machine.'
|
NVD-CWE-Other
|
CVE-2012-0223
|
2012-02-22 22:54 |
2012-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257570
|
- |
|
7t
|
termis
|
Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2012-0223
|
2012-02-22 22:54 |
2012-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
