|
263051
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML via a feed:// URL.
|
CWE-79
Cross-site Scripting
|
CVE-2012-0678
|
2012-08-8 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263052
|
- |
|
nancy_wichmann
|
sitedoc
|
Site Documentation (Sitedoc) module for Drupal 6.x-1.x before 6.x-1.4 does not properly check the save location when archiving, which allows remote attackers to obtain sensitive information via unspe…
|
CWE-200
Information Exposure
|
CVE-2012-2302
|
2012-08-8 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263053
|
- |
|
oleg_kovalchuk
|
cctags
|
Cross-site scripting (XSS) vulnerability in the cctags module for Drupal 6.x-1.x before 6.x-1.10 and 7.x-1.x before 7.x-1.10 allows remote authenticated users with certain roles to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2310
|
2012-08-8 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263054
|
- |
|
debian
canonical
|
php5-common
debian_linux
php5
ubuntu_linux
|
The Debian php_crypt_revamped.patch patch for PHP 5.3.x, as used in the php5 package before 5.3.3-7+squeeze4 in Debian GNU/Linux squeeze, the php5 package before 5.3.2-1ubuntu4.17 in Ubuntu 10.04 LTS…
|
CWE-310
Cryptographic Issues
|
CVE-2012-2317
|
2012-08-8 13:00 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263055
|
- |
|
kde
|
kde_pim
|
The HTMLQuoteColorer::process function in messageviewer/htmlquotecolorer.cpp in KDE PIM 4.6 through 4.8 does not disable JavaScript, Java, and Plugins, which allows remote attackers to inject arbitra…
|
CWE-16
Configuration
|
CVE-2012-3413
|
2012-08-8 13:00 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263056
|
- |
|
gnome
|
screensaver
|
gnome-screensaver 3.4.x before 3.4.4 and 3.5.x before 3.5.4, when multiple screens are used, only locks the screen with the active focus, which allows physically proximate attackers to bypass screen …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3452
|
2012-08-8 13:00 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263057
|
- |
|
debian
|
logol
|
logol 1.5.0 uses world writable permissions for the /var/lib/logol/results directory, which allows local users to delete or overwrite arbitrary files.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3453
|
2012-08-8 13:00 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263058
|
- |
|
cisco
|
ios
|
Cisco IOS 15.1 and 15.2, when the Multicast Music-on-Hold (MMoH) feature of Cisco Unified Communications Manager (CUCM) is enabled, allows remote attackers to obtain sensitive crosstalk information b…
|
CWE-200
Information Exposure
|
CVE-2012-1361
|
2012-08-8 05:17 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263059
|
- |
|
cisco
|
nx-os
nexus_5000
|
The igmp_snoop_orib_fill_source_update function in the IGMP process in NX-OS 5.0 and 5.1 on Cisco Nexus 5000 series switches allows remote attackers to cause a denial of service (device reload) via I…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1357
|
2012-08-8 05:14 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263060
|
- |
|
cisco
|
wide_area_application_services
|
Cisco Wide Area Application Services (WAAS) appliances with software 4.4, 5.0, and 5.1 include a one-way hash of a password within output text, which might allow remote attackers to obtain sensitive …
|
CWE-200
Information Exposure
|
CVE-2012-1348
|
2012-08-8 05:02 |
2012-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
