261431
|
- |
|
efrontlearning
|
efront
|
eFront 3.6.10, 3.6.11 build 15059, and earlier allows remote attackers to obtain sensitive information via invalid courses_ID parameter in the lesson_info module to index.php, which reveals the insta…
|
CWE-200
Information Exposure
|
CVE-2012-6515
|
2013-01-29 14:00 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261432
|
- |
|
perl
|
perl
|
The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, whic…
|
NVD-CWE-Other
|
CVE-2011-2728
|
2013-01-29 14:00 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261433
|
- |
|
ibm
|
filenet_content_manager
|
IBM FileNet Content Manager 4.0, 4.0.1, and 4.5, as used in IBM WebSphere Application Server (WAS) and Oracle BEA WebLogic Application Server, when the CE Web Services listener has a certain WSEAF co…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-1953
|
2013-01-29 14:00 |
2009-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261434
|
- |
|
justsystems
|
atok atok_flat-rate_service just_smile
|
Unspecified vulnerability in JustSystems Corporation ATOK 2006 through 2009 and ATOK flat-rate service, and Just Smile 4 with the ATOK Smile module, allows physically proximate users to bypass the sc…
|
NVD-CWE-noinfo
|
CVE-2009-4738
|
2013-01-29 14:00 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261435
|
- |
|
suse
|
webyast
|
SUSE WebYaST before 1.2 0.2.63-0.6.1 allows remote attackers to modify the hosts list, and subsequently conduct man-in-the-middle attacks, via a crafted /host request on TCP port 4984.
|
NVD-CWE-noinfo
|
CVE-2012-0435
|
2013-01-28 14:00 |
2013-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261436
|
- |
|
coolpdf
|
coolpdf
|
Stack-based buffer overflow in the reader in CoolPDF 3.0.2.256 allows remote attackers to execute arbitrary code via a PDF document with a crafted stream.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4914
|
2013-01-28 14:00 |
2013-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261437
|
- |
|
tp-link
|
tl-wr841n_firmware tl-wr841n
|
Directory traversal vulnerability in the web-based management interface on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201 Rel.54965n and earlier allows remote attackers to read arbitr…
|
CWE-22
Path Traversal
|
CVE-2012-6276
|
2013-01-28 14:00 |
2013-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261438
|
- |
|
oracle
|
mojarra
|
Oracle Mojarra 1.2_14 and 2.0.2, as used in IBM WebSphere Application Server, Caucho Resin, and other applications, does not properly handle an unencrypted view state, which allows remote attackers t…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2087
|
2013-01-28 14:00 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261439
|
- |
|
typsoft
|
typsoft_ftp_server
|
Buffer overflow in TYPSoft FTP Server 1.1 allows remote authenticated users to cause a denial of service (application crash) via a long string in an APPE command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5329
|
2013-01-26 13:58 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261440
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.3 allow remote authenticated users to inject arbitrary web script or HTML via a crafted name of (1) an event, (2) a …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5339
|
2013-01-26 13:58 |
2012-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|