257051
|
- |
|
atmail
|
atmail_open
|
compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 does not properly handle ../ (dot dot slash) sequences in the unique parameter, which allows remote attackers to conduct director…
|
CWE-22
Path Traversal
|
CVE-2012-1917
|
2012-08-29 12:48 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257052
|
- |
|
atmail
|
atmail_open
|
CRLF injection vulnerability in mime.php in @Mail WebMail Client in AtMail Open-Source before 1.05 allows remote attackers to conduct directory traversal attacks and read arbitrary files via a %0A se…
|
CWE-94
Code Injection
|
CVE-2012-1919
|
2012-08-29 12:48 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257053
|
- |
|
debian
|
cifs-utils
|
mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file path in the second argument, which reveals their existence in an error messag…
|
CWE-200
Information Exposure
|
CVE-2012-1586
|
2012-08-28 13:00 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257054
|
- |
|
timely
|
all-in-one_event_calendar
|
Multiple cross-site scripting (XSS) vulnerabilities in the All-in-One Event Calendar plugin 1.4 and 1.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) title p…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1835
|
2012-08-28 13:00 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257055
|
- |
|
barandisolutions
|
shareyourcart
|
The ShareYourCart plugin 1.7.1 for WordPress allows remote attackers to obtain the installation path via unspecified vectors related to the SDK.
|
CWE-200
Information Exposure
|
CVE-2012-4332
|
2012-08-28 13:00 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257056
|
- |
|
bluecoat
|
reporter
|
Directory traversal vulnerability in Blue Coat Reporter 9.x before 9.2.4.13, 9.2.5.x before 9.2.5.1, and 9.3 before 9.3.1.2 on Windows allows remote attackers to read arbitrary files, and consequentl…
|
CWE-22
Path Traversal
|
CVE-2011-5127
|
2012-08-28 07:54 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257057
|
- |
|
bluecoat
|
sgos
|
Blue Coat ProxySG 6.1 before SGOS 6.1.5.1 and 6.2 before SGOS 6.2.2.1 writes the secure heap to core images, which allows context-dependent attackers to obtain sensitive authentication information by…
|
CWE-200
Information Exposure
|
CVE-2011-5126
|
2012-08-28 07:38 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257058
|
- |
|
bluecoat
|
proxyone proxysg
|
Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5124
|
2012-08-28 07:30 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257059
|
- |
|
bluecoat
|
sgos proxysg proxysg_sg210-10 proxysg_sg210-25 proxysg_sg210-5 proxysg_sg510-10 proxysg_sg510-20 proxysg_sg510-25 proxysg_sg510-5 proxysg_sg810-10 proxysg_sg810-20 pr…
|
Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-5189
|
2012-08-28 07:19 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257060
|
- |
|
websense
|
websense_email_security
|
The Rules Service in Websense Email Security before 7.1 allows remote attackers to cause a denial of service (service crash) via an attachment with a crafted size.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-5130
|
2012-08-28 06:55 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|