261411
|
- |
|
kepler_lam
|
iptools
|
Directory traversal vulnerability in the WebServer (Thttpd.bat) in IpTools (aka Tiny TCP/IP server) 0.1.4 allows remote attackers to read arbitrary files via a .. (dot dot) in a HTTP request.
|
CWE-22
Path Traversal
|
CVE-2012-5344
|
2013-01-30 14:00 |
2012-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261412
|
- |
|
cisco
|
wireless_lan_controller_software 2000_wireless_lan_controller 2100_wireless_lan_controller 2500_wireless_lan_controller 4100_wireless_lan_controller 4400_wireless_lan_controller 550…
|
screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to cause a denial of service (device reload) via a certain b…
|
NVD-CWE-noinfo
|
CVE-2012-5991
|
2013-01-30 14:00 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261413
|
- |
|
cisco
|
wireless_lan_controller_software 2000_wireless_lan_controller 2100_wireless_lan_controller 2500_wireless_lan_controller 4100_wireless_lan_controller 4400_wireless_lan_controller 550…
|
Multiple cross-site request forgery (CSRF) vulnerabilities on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allow remote attackers to hijack the authentication of administrators…
|
CWE-352
Origin Validation Error
|
CVE-2012-5992
|
2013-01-30 14:00 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261414
|
- |
|
cisco
|
wireless_lan_controller_software 2000_wireless_lan_controller 2100_wireless_lan_controller 2500_wireless_lan_controller 4100_wireless_lan_controller 4400_wireless_lan_controller 550…
|
Cross-site scripting (XSS) vulnerability in screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6007
|
2013-01-30 14:00 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261415
|
- |
|
dell
|
openmanage_server_administrator
|
Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic p…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6272
|
2013-01-30 14:00 |
2013-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261416
|
- |
|
uninett
|
radsecproxy
|
radsecproxy before 1.6.1 does not properly verify certificates when there are configuration blocks with CA settings that are unrelated to the block being used for verifying the certificate chain, whi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4523
|
2013-01-30 13:55 |
2012-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261417
|
- |
|
google mozilla
|
chrome firefox
|
The SPDY protocol 3 and earlier, as used in Mozilla Firefox, Google Chrome, and other products, can perform TLS encryption of compressed data without properly obfuscating the length of the unencrypte…
|
CWE-310
Cryptographic Issues
|
CVE-2012-4930
|
2013-01-30 13:55 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261418
|
- |
|
apache
|
axis2
|
Apache Axis2 allows remote attackers to forge messages and bypass authentication via an "XML Signature wrapping attack."
|
CWE-287
Improper Authentication
|
CVE-2012-4418
|
2013-01-30 13:54 |
2012-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261419
|
- |
|
lars_hjemli
|
cgit
|
Heap-based buffer overflow in the substr function in parsing.c in cgit 0.9.0.3 and earlier allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4465
|
2013-01-30 13:54 |
2012-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261420
|
- |
|
privatemsg_project
|
privatemsg
|
Cross-site scripting (XSS) vulnerability in the Privatemsg module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via a user name in a private message.
|
CWE-79
Cross-site Scripting
|
CVE-2012-4468
|
2013-01-30 13:54 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|