257451
|
- |
|
bandainamcogames
|
madomagi-ip_android
|
The Puella Magi Madoka Magica iP application 1.05 and earlier for Android places cleartext Twitter credentials in a log file, which allows remote attackers to obtain sensitive information via a craft…
|
CWE-255
Credentials Management
|
CVE-2012-2630
|
2012-06-6 13:00 |
2012-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257452
|
- |
|
bestpractical
|
rt
|
Best Practical Solutions RT 4.x before 4.0.6 does not properly implement the DisallowExecuteCode option, which allows remote authenticated users to bypass intended access restrictions and execute arb…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5093
|
2012-06-6 01:34 |
2012-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257453
|
- |
|
bestpractical
|
rt
|
Best Practical Solutions RT 3.8.x before 3.8.12 and 4.x before 4.0.6 allows remote attackers to execute arbitrary code and gain privileges via unspecified vectors, a different vulnerability than CVE-…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5092
|
2012-06-6 01:31 |
2012-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257454
|
- |
|
rssowl
|
rssowl
|
Cross-site scripting (XSS) vulnerability in RSSOwl before 2.1.1 allows remote attackers to inject arbitrary web script or HTML via a feed, a different vulnerability than CVE-2006-4760.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1252
|
2012-06-5 13:00 |
2012-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257455
|
- |
|
cogentdatahub
|
cogent_datahub
|
Multiple stack-based buffer overflows in the DH_OneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrar…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3493
|
2012-06-4 13:00 |
2011-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257456
|
- |
|
typo3
|
typo3
|
The jumpUrl (aka access tracking) implementation in tslib/class.tslib_fe.php in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly compare certain hash values dur…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3714
|
2012-06-1 12:33 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257457
|
- |
|
php-collab
|
phpcollab
|
phpCollab 2.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by topics/noti_newt…
|
CWE-200
Information Exposure
|
CVE-2011-3772
|
2012-05-31 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257458
|
- |
|
idevspot
|
phphostbot
|
PhpHostBot 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/create_ac…
|
CWE-200
Information Exposure
|
CVE-2011-3779
|
2012-05-31 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257459
|
- |
|
roundup-tracker
|
roundup
|
Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.14 allows remote attackers to inject arbitrary web script or HTML via the template argument to the /issue program.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2491
|
2012-05-31 13:00 |
2010-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257460
|
- |
|
cisco
|
ios unified_communications_manager
|
Memory leak in Cisco IOS 12.4 and 15.0 through 15.2, and Cisco Unified Communications Manager (CUCM) 7.x, allows remote attackers to cause a denial of service (memory consumption) via a crafted respo…
|
CWE-399
Resource Management Errors
|
CVE-2011-4019
|
2012-05-30 13:00 |
2012-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|