261501
|
- |
|
age_verification_project
|
age_verification
|
Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and earlier for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing …
|
CWE-20
Improper Input Validation
|
CVE-2012-6499
|
2013-01-14 14:00 |
2013-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261502
|
- |
|
ps_project_management_team
|
unity-firefox-extension
|
content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtai…
|
NVD-CWE-Other
|
CVE-2012-0958
|
2013-01-11 14:00 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261503
|
- |
|
jboss
|
ironjacamar
|
The IronJacamar container before 1.0.12.Final for JBoss Application Server, when allow-multiple-users is enabled in conjunction with a security domain, does not use the credentials supplied in a getC…
|
CWE-255
Credentials Management
|
CVE-2012-3428
|
2013-01-8 14:04 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261504
|
- |
|
hp
|
color_laserjet_cm3530 color_laserjet_cm60xx color_laserjet_cp3525 color_laserjet_cp4xxx color_laserjet_cp6015 laserjet_p3015 laserjet_p4xxx
|
Cross-site scripting (XSS) vulnerability on the HP Color LaserJet CM3530 with firmware before 53.190.9, Color LaserJet CM60xx with firmware before 52.210.9, Color LaserJet CP3525 with firmware before…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3272
|
2013-01-8 14:03 |
2012-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261505
|
- |
|
novell
|
iprint
|
Unspecified vulnerability in Novell iPrint Client before 5.82 allows remote attackers to execute arbitrary code via an op-client-interface-version action.
|
NVD-CWE-noinfo
|
CVE-2012-0411
|
2013-01-8 14:00 |
2012-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261506
|
- |
|
oracle
|
hyperion_financial_management
|
Unspecified vulnerability in a TList 6 ActiveX control in Oracle Hyperion Financial Management 11.1.1.4 and 11.1.2.1.104 allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-1714
|
2013-01-8 14:00 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261507
|
- |
|
oracle
|
hyperion_interactive_reporting essbase_server hyperion_production_reporting_server integration_services_server
|
Buffer overflow in the DataDirect ODBC driver, as used in Oracle Hyperion Interactive Reporting 11.1.2.1 and 11.1.2.2, Essbase Server 11.1.2.1 and 11.1.2.2, Production Reporting Server 11.1.2.1 and 1…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3133
|
2013-01-8 14:00 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261508
|
- |
|
opera
|
opera_mini opera_mobile
|
The Opera Mobile application before 12.1 and Opera Mini application before 7.5 for Android do not properly implement the WebView class, which allows attackers to obtain sensitive information via a cr…
|
CWE-200
Information Exposure
|
CVE-2012-5180
|
2013-01-8 14:00 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261509
|
- |
|
naver
|
loctouch
|
The Loctouch application 3.4.6 and earlier for Android does not properly handle implicit intents, which allows attackers to obtain sensitive information about logged locations via a crafted applicati…
|
CWE-200
Information Exposure
|
CVE-2012-5182
|
2013-01-8 14:00 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261510
|
- |
|
naver
|
loctouch
|
The Loctouch application 3.4.6 and earlier for Android allows attackers to obtain sensitive information about logged locations via a crafted application that leverages read permission for system log …
|
CWE-200
Information Exposure
|
CVE-2012-5183
|
2013-01-8 14:00 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|