|
259781
|
- |
|
astaro
sophos
|
security_gateway_software
security_gateway
unified_threat_management_software
unified_threat_management
|
Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Co…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3238
|
2012-07-10 13:00 |
2012-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259782
|
- |
|
hazama
|
mt4i
|
Cross-site scripting (XSS) vulnerability in the MT4i plugin 3.1 beta 4 and earlier for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2644
|
2012-07-9 23:28 |
2012-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259783
|
- |
|
hazama
|
mt4i
|
Cross-site scripting (XSS) vulnerability in the MT4i plugin 3.1 beta 4 and earlier for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2642
|
2012-07-9 13:00 |
2012-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259784
|
- |
|
kent-web
|
yy-board
|
Cross-site scripting (XSS) vulnerability in KENT-WEB YY-BOARD before 6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted form entry.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2643
|
2012-07-9 13:00 |
2012-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259785
|
- |
|
symantec
|
message_filter
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Brightmail Control Center in Symantec Message Filter 6.3 allow remote attackers to hijack the authentication of arbitrary users for reque…
|
CWE-352
Origin Validation Error
|
CVE-2012-0303
|
2012-07-6 23:14 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259786
|
- |
|
symantec
|
message_filter
|
Session fixation vulnerability in Brightmail Control Center in Symantec Message Filter 6.3 allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2012-0301
|
2012-07-6 23:05 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259787
|
- |
|
zenphoto
|
zenphoto
|
Cross-site scripting (XSS) vulnerability in Zenphoto before 1.4.3 allows remote attackers to inject arbitrary web script or HTML by triggering improper interaction with an unspecified library.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2641
|
2012-07-6 13:00 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259788
|
- |
|
redhat
|
dtach
|
Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an …
|
CWE-189
Numeric Errors
|
CVE-2012-3368
|
2012-07-4 13:00 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259789
|
- |
|
gnome
|
gdk-pixbuf
|
The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service (…
|
NVD-CWE-Other
|
CVE-2011-2485
|
2012-07-4 01:40 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259790
|
- |
|
apache
|
http_server
|
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of envi…
|
CWE-20
Improper Input Validation
|
CVE-2011-4415
|
2012-07-3 13:04 |
2011-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
