260311
|
- |
|
7t
|
aquis
|
Untrusted search path vulnerability in 7-Technologies (7T) AQUIS 1.5 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerabili…
|
NVD-CWE-Other
|
CVE-2012-0224
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260312
|
- |
|
7t
|
aquis
|
Per: http://www.us-cert.gov/control_systems/pdf/ICSA-12-025-02.pdf
'This vulnerability may be exploitable from a remote machine'
|
NVD-CWE-Other
|
CVE-2012-0224
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260313
|
- |
|
7t
|
aquis
|
Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2012-0224
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260314
|
- |
|
boonex
|
dolphin
|
Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin before 7.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) explain parameter to explanation.php or th…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0873
|
2012-02-24 14:00 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260315
|
- |
|
pbboard
|
pbboard
|
Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in PBBoard 2.1.4 allow remote attackers to hijack the authentication of administrators for requests that (1) upload a file via …
|
CWE-352
Origin Validation Error
|
CVE-2012-1216
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260316
|
- |
|
pluck-cms
|
pluck
|
Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in pluck 4.7 allow remote attackers to hijack the authentication of admins for requests that (1) modify the admin email address…
|
CWE-352
Origin Validation Error
|
CVE-2012-1227
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260317
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in b2b/auction/container.jsp in the Internet Sales (crm.b2b) module in SAP NetWeaver 7.0 allows remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1290
|
2012-02-24 14:00 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260318
|
- |
|
sap
|
netweaver
|
Unspecified vulnerability in the com.sap.aii.mdt.amt.web.AMTPageProcessor servlet in SAP NetWeaver 7.0 allows remote attackers to obtain sensitive information about the Adapter Monitor via unspecifie…
|
NVD-CWE-noinfo
|
CVE-2012-1291
|
2012-02-24 14:00 |
2012-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260319
|
- |
|
novell
|
iprint
|
Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4187
|
2012-02-24 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260320
|
- |
|
advantech
|
advantech_webaccess
|
SQL injection vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to execute arbitrary SQL commands via a malformed URL. NOTE: this vulnerability exists because of an…
|
CWE-89
SQL Injection
|
CVE-2012-1234
|
2012-02-23 14:00 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|