|
260921
|
- |
|
nvidia
|
unix_graphic_driver
|
NVIDIA UNIX graphics driver before 295.71 and before 304.32 allows local users to write to arbitrary physical memory locations and gain privileges by modifying the VGA window using /dev/nvidia0.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4225
|
2013-08-22 12:57 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260922
|
- |
|
tor
|
tor
|
Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service (daemon crash) via vectors related to failed DNS requests.
|
CWE-399
Resource Management Errors
|
CVE-2012-3517
|
2013-08-22 12:56 |
2012-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260923
|
- |
|
tor
|
tor
|
The networkstatus_parse_vote_from_string function in routerparse.c in Tor before 0.2.2.38 does not properly handle an invalid flavor name, which allows remote attackers to cause a denial of service (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3518
|
2013-08-22 12:56 |
2012-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260924
|
- |
|
tor
|
tor
|
routerlist.c in Tor before 0.2.2.38 uses a different amount of time for relay-list iteration depending on which relay is chosen, which might allow remote attackers to obtain sensitive information abo…
|
CWE-200
Information Exposure
|
CVE-2012-3519
|
2013-08-22 12:56 |
2012-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260925
|
- |
|
mark_pilgrim
|
feedparser
|
Universal Feed Parser (aka feedparser or python-feedparser) before 5.1.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML ENTITY declaration in a non-ASCII …
|
CWE-399
Resource Management Errors
|
CVE-2012-2921
|
2013-08-22 12:55 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260926
|
- |
|
andreas_gohr
|
dokuwiki
|
Cross-site scripting (XSS) vulnerability in the tpl_mediaFileList function in inc/template.php in DokuWiki before 2012-01-25b allows remote attackers to inject arbitrary web script or HTML via the ns…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0283
|
2013-08-22 12:50 |
2012-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260927
|
- |
|
henri_wahl
|
nagstamon
|
The automatic update request in Nagstamont before 0.9.10 uses a cleartext base64 format for transmission of a username and password, which allows remote attackers to obtain sensitive information by s…
|
CWE-255
Credentials Management
|
CVE-2013-4114
|
2013-08-22 03:37 |
2013-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260928
|
- |
|
alienvault
|
open_source_security_information_management
|
Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.1 allow remote attackers to execute arbitrary SQL commands via the (1) sensor parameter in a…
|
CWE-89
SQL Injection
|
CVE-2013-5321
|
2013-08-21 23:08 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260929
|
- |
|
atlassian
|
jira
|
Cross-site scripting (XSS) vulnerability in secure/admin/user/views/deleteuserconfirm.jsp in the Admin Panel in Atlassian JIRA before 6.0.5 allows remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5319
|
2013-08-21 23:05 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260930
|
- |
|
joomlaworks
|
jw_allvideos
|
Directory traversal vulnerability in includes/download.php in the JoomlaWorks AllVideos (Jw_allVideos) plugin 3.0 through 3.2 for Joomla! allows remote attackers to read arbitrary files via a ./../..…
|
CWE-22
Path Traversal
|
CVE-2010-0696
|
2013-08-21 15:18 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
