| Page(s) : 1 2 3 4 5 6 [7] 8 9 10 11 12 13 14 15 16 17 ... | Result(s) : 4369 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| 2.1 | 2013-03-27 | CVE-2013-0259 | cve | Cross-site scripting (XSS) vulnerability in the Boxes module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with administer or edit boxes permissions to inj... |
| 2.6 | 2013-03-27 | CVE-2013-0181 | cve | Cross-site scripting (XSS) vulnerability in Views in the Search API (search_api) module 7.x-1.x before 7.x-1.4 for Drupal, when using certain backends and facets, allows remote ... |
| 1.5 | 2013-03-26 | CVE-2013-0525 | cve | Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to inject arbitrary web script or HTML via a shared mail file, aka SPR DKEN8PDNTX. |
| 3.5 | 2013-03-25 | CVE-2013-1835 | cve | Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated administrators to obtain sensitive information from the ext... |
| 3.5 | 2013-03-25 | CVE-2013-1833 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the File Picker module in Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allow ... |
| 3.5 | 2013-03-22 | CVE-2013-1840 | cve | The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote auth... |
| 1.9 | 2013-03-22 | CVE-2013-2636 | cve | net/bridge/br_mdb.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a cr... |
| 1.9 | 2013-03-22 | CVE-2013-2635 | cve | The rtnl_fill_ifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensiti... |
| 1.9 | 2013-03-22 | CVE-2013-2634 | cve | net/dcb/dcbnl.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a ... |
| 3.6 | 2013-03-22 | CVE-2013-0914 | cve | The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easi... |
| 3.5 | 2013-03-21 | CVE-2013-0453 | cve | Cross-site scripting (XSS) vulnerability in Web Reports in IBM Tivoli Endpoint Manager (TEM) before 8.2.1372 allows remote authenticated users to inject arbitrary web script or ... |
| 1.9 | 2013-03-21 | CVE-2013-1427 | cve | The configuration file for the FastCGI PHP support for lighthttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local use... |
| 3.6 | 2013-03-21 | RHSA-2013:0669 | RedHat | qt security update |
| 3.5 | 2013-03-21 | CVE-2013-0672 | cve | Cross-site scripting (XSS) vulnerability in the HMI web application in Siemens WinCC (TIA Portal) 11 allows remote authenticated users to inject arbitrary web script or HTML via... |
| 3.6 | 2013-03-20 | CVE-2013-1766 | cve | libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors. |
| 2.1 | 2013-03-20 | CVE-2013-0980 | cve | The Passcode Lock implementation in Apple iOS before 6.1.3 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode re... |
| 1.9 | 2013-03-20 | CVE-2013-0979 | cve | lockdownd in Lockdown in Apple iOS before 6.1.3 does not properly consider file types during the permission-setting step of a backup restoration, which allows local users to cha... |
| 2.1 | 2013-03-20 | CVE-2013-0978 | cve | The ARM prefetch abort handler in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1 does not ensure that it has been invoked in an abort context, which makes it eas... |
| 2.1 | 2013-03-19 | CVE-2013-0227 | cve | Cross-site scripting (XSS) vulnerability in the Search API Sorts module 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain roles to inject arbitrar... |
| 2.1 | 2013-03-19 | CVE-2013-0225 | cve | Cross-site scripting (XSS) vulnerability in the User Relationships module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.0-alpha5 for Drupal allows remote authenticated users w... |
| Page(s) : 1 2 3 4 5 6 [7] 8 9 10 11 12 13 14 15 16 17 ... | Result(s) : 4369 |
