|
263601
|
- |
|
newsgator
|
feeddemon
|
Cross-site scripting (XSS) vulnerability in FeedDemon before 4.0, when the feed preview option is enabled, allows remote attackers to inject arbitrary web script or HTML via a feed.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2634
|
2012-06-18 13:00 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263602
|
- |
|
dolphin-browser
|
dolphin_browser_hd
dolphin_for_pad
|
The Dolphin Browser HD application before 7.6 and Dolphin for Pad application before 1.0.1 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2012-2635
|
2012-06-18 13:00 |
2012-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263603
|
- |
|
atmarkweb
|
\@web_shoppingcart_t
\@web_shoppingcart
|
Cross-site scripting (XSS) vulnerability in WEBLOGIC @WEB ShoppingCart before 1.5.2.0, and @WEB ShoppingCart T 1.5.0.1 and earlier, allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2631
|
2012-06-15 23:55 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263604
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not properly restrict the reading of JSON strings, which allows remote attackers to perform cross-domain loading of JSON resources and consequently obtain sensitive informatio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3557
|
2012-06-15 22:45 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263605
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not properly restrict the opening of a pop-up window in response to the first click of a double-click action, which makes it easier for user-assisted remote attackers to condu…
|
CWE-20
Improper Input Validation
|
CVE-2012-3556
|
2012-06-15 22:39 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263606
|
- |
|
vmware
|
workstation
player
esx
esxi
|
VMware Workstation 8.x before 8.0.4, VMware Player 4.x before 4.0.4, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow remote attackers to cause a denial of service (guest OS crash) v…
|
CWE-94
Code Injection
|
CVE-2012-3289
|
2012-06-15 13:00 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263607
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during unusually timed changes to this field, which makes it easier for user-assisted remote attackers …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3558
|
2012-06-15 13:00 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263608
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during blocked navigation, which makes it easier for remote attackers to conduct spoofing attacks by de…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3560
|
2012-06-15 13:00 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263609
|
- |
|
cisco
|
unified_communications_manager
unified_presence_server
|
Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x, 7.x before 7.1(5b)su4, 8.0, and 8.5 before 8.5(1)su2 and Cisco Unified Presence Server 6.x, 7.x, 8.0, and 8.5 before 8.5xnr …
|
CWE-200
Information Exposure
|
CVE-2011-1643
|
2012-06-15 13:00 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263610
|
- |
|
cisco
|
unified_communications_manager
|
The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x does not properly handle idle TCP connections, which allows remote attackers to cause a denial …
|
CWE-399
Resource Management Errors
|
CVE-2011-2560
|
2012-06-15 13:00 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
