263711
|
- |
|
horde
|
groupware_webmail_edition
|
Cross-site scripting (XSS) vulnerability in Horde_Form in Horde Groupware Webmail Edition before 4.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related …
|
CWE-79
Cross-site Scripting
|
CVE-2012-0909
|
2012-01-27 01:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263712
|
- |
|
asterisk
|
open_source
|
chan_sip.c in Asterisk Open Source 1.8.x before 1.8.8.2 and 10.x before 10.0.1, when the res_srtp module is used and media support is improperly configured, allows remote attackers to cause a denial …
|
NVD-CWE-noinfo
|
CVE-2012-0885
|
2012-01-26 23:50 |
2012-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263713
|
- |
|
google
|
android
|
The Bluetooth service (com/android/phone/BluetoothHeadsetService.java) in Android 2.3 before 2.3.6 allows remote attackers within Bluetooth range to obtain contact data via an AT phonebook transfer.
|
CWE-200
Information Exposure
|
CVE-2011-4276
|
2012-01-26 14:00 |
2012-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263714
|
- |
|
splunk
|
splunk
|
Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functionality within an environment that intentionally does not support authentication, which allows remote …
|
CWE-287
Improper Authentication
|
CVE-2011-4644
|
2012-01-26 14:00 |
2012-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263715
|
- |
|
kaixin001
|
kaixin001
|
The Kaixin001 (com.kaixin001.activity) application 1.3.1 and 1.3.3 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a cleartext pass…
|
CWE-200
Information Exposure
|
CVE-2011-4866
|
2012-01-26 04:45 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263716
|
- |
|
ubermedia
|
twidroyd_legacy
|
The Ubermedia Twidroyd Legacy (com.twidroydlegacy) application 4.3.11 for Android does not properly protect data, which allows remote attackers to read or modify Twitter information via a crafted app…
|
CWE-200
Information Exposure
|
CVE-2011-4699
|
2012-01-26 04:43 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263717
|
- |
|
androidapptools
|
easy_filter
|
The AndroidAppTools Easy Filter (com.phoneblocker.android) application 1.1 and 1.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS messages and call re…
|
CWE-200
Information Exposure
|
CVE-2011-4698
|
2012-01-26 04:41 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263718
|
- |
|
renren
|
renren_talk
|
Heap-based buffer overflow in RenRen Talk 2.9 allows remote attackers to execute arbitrary code via a crafted image in a chat message, as demonstrated using a PNG file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0916
|
2012-01-26 03:48 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263719
|
- |
|
oetiker
|
smokeping
|
Cross-site scripting (XSS) vulnerability in smokeping_cgi in Smokeping 2.4.2, 2.6.6, and other versions before 2.6.7 allows remote attackers to inject arbitrary web script or HTML via the displaymode…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0790
|
2012-01-25 14:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263720
|
- |
|
renren
|
renren_talk
|
Integer signedness error in RenRen Talk 2.9 allows remote attackers to execute arbitrary code via crafted dimensions of a skin file, leading to a heap-based buffer overflow, as demonstrated using a B…
|
CWE-189
Numeric Errors
|
CVE-2012-0915
|
2012-01-25 14:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|