|
263281
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via a Table Operations (1) TRUNCATE or (…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4579
|
2012-08-22 13:00 |
2012-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263282
|
- |
|
hp
|
san\/iq
|
hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management se…
|
CWE-255
Credentials Management
|
CVE-2012-4362
|
2012-08-22 03:24 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263283
|
- |
|
att
htc
samsung
sprint
t-mobile
|
status
chacha
desire
merge
galaxy_s
evo_shift_4g
g2
mytouch_3g_slide
mytouch_4g_slide
|
The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myTou…
|
CWE-255
Credentials Management
|
CVE-2012-2980
|
2012-08-21 19:46 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263284
|
- |
|
cutesoft_components
|
cute_editor
|
Cross-site scripting (XSS) vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the _UploadID parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2985
|
2012-08-21 19:46 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263285
|
- |
|
debian
|
devotee
|
devotee 0.1 patch 2 uses a 32-bit seed for generating 48-bit random numbers, which makes it easier for remote attackers to obtain the secret monikers via a brute force attack.
|
CWE-200
Information Exposure
|
CVE-2012-2387
|
2012-08-21 13:00 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263286
|
- |
|
hp
|
san\/iq
|
lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) first, (2) third, or (3) f…
|
CWE-78
OS Command
|
CVE-2012-2986
|
2012-08-21 13:00 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263287
|
- |
|
totalshopuk
|
ecommerce
|
Cross-site scripting (XSS) vulnerability in the refresh_page function in application/modules/_main/views/_top.php in Total Shop UK eCommerce Open Source before 2.1.2_p1 allows remote attackers to inj…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4236
|
2012-08-21 13:00 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263288
|
- |
|
hp
|
san\/iq
|
lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter.
|
CWE-78
OS Command
|
CVE-2012-4361
|
2012-08-21 13:00 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263289
|
- |
|
ffmpeg
libav
|
ffmpeg
libav
|
The (1) av_image_fill_pointers, (2) vp5_parse_coeff, and (3) vp6_parse_coeff functions in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4353
|
2012-08-21 13:00 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263290
|
- |
|
sielcosistemi
|
winlog_pro
winlog_lite
|
Multiple directory traversal vulnerabilities in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 allow remote attackers to read arbitrary files via port-46824 TCP p…
|
CWE-22
Path Traversal
|
CVE-2012-4356
|
2012-08-21 01:16 |
2012-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
