| Page(s) : 1 ... 260 261 262 263 264 265 266 267 268 269 [270] 271 272 273 274 275 276 277 278 279 280 ... | Result(s) : 8825 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2012-12-03 | CVE-2012-5539 | cve | The Organic Groups (OG) module 7.x-1.x before 7.x-1.5 for Drupal does not properly maintain pending group memberships, which allows remote authenticated users to post to arbitra... |
| 2.1 | 2012-12-03 | CVE-2012-5538 | cve | Cross-site scripting (XSS) vulnerability in the FileField Sources module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.6 for Drupal, when the field has "Reference existing" so... |
| 1.9 | 2012-12-03 | CVE-2012-3432 | cve | The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information b... |
| 1.9 | 2012-12-03 | CVE-2012-2934 | cve | Xen 4.0, and 4.1, when running a 64-bit PV guest on "older" AMD CPUs, does not properly protect against a certain AMD processor bug, which allows local guest OS users to cause a... |
| 1.9 | 2012-12-03 | CVE-2012-0218 | cve | Xen 3.4, 4.0, and 4.1, when the guest OS has not registered a handler for a syscall or sysenter instruction, does not properly clear a flag for exception injection when injectin... |
| 2.1 | 2012-11-30 | CVE-2012-4571 | cve | Python Keyring 0.9.1 does not securely initialize the cipher when encrypting passwords for CryptedFileKeyring files, which makes it easier for local users to obtain passwords vi... |
| 3.5 | 2012-11-30 | CVE-2012-4473 | cve | The Restrict node page view module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "view any node page" or "view any node {type} page" permission to... |
| 2.6 | 2012-11-30 | CVE-2012-4469 | cve | Cross-site scripting (XSS) vulnerability in the Hashcash module 6.x-2.x before 6.x-2.6 and 7.x-2.x before 7.x-2.2 for Drupal, when "Log failed hashcash" is enabled, allows remot... |
| 2.1 | 2012-11-29 | CVE-2012-5530 | cve | The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### te... |
| 2.1 | 2012-11-27 | CVE-2012-4615 | cve | EMC Smarts Network Configuration Manager (NCM) before 9.1 uses a hardcoded encryption key for the storage of credentials, which allows local users to obtain sensitive informatio... |
| 2.1 | 2012-11-24 | CVE-2012-0959 | cve | Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials. |
| 2.1 | 2012-11-23 | CVE-2012-3494 | cve | The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest ... |
| 3.3 | 2012-11-23 | CVE-2012-2377 | cve | JGroups diagnostics service in JBoss Enterprise Portal Platform before 5.2.2, SOA Platform before 5.3.0, and BRMS Platform before 5.3.0, is enabled without authentication when s... |
| 2.1 | 2012-11-21 | CVE-2012-4539 | cve | Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service (infinite loop and hang or crash)... |
| 2.1 | 2012-11-21 | CVE-2012-4537 | cve | Xen 3.4 through 4.2, and possibly earlier versions, does not properly synchronize the p2m and m2p tables when the set_p2m_entry function fails, which allows local HVM guest OS a... |
| 2.1 | 2012-11-21 | CVE-2012-4536 | cve | The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in Xen 2.2 allows local guest OS administrators to cause a denial of service (Xen crash) via a crafted pirq va... |
| 1.9 | 2012-11-21 | CVE-2012-4535 | cve | Xen 3.4 through 4.2, and possibly earlier versions, allows local guest OS administrators to cause a denial of service (Xen infinite loop and physical CPU consumption) by setting... |
| 3.5 | 2012-11-19 | CVE-2012-5529 | cve | TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing... |
| 3.3 | 2012-11-19 | CVE-2012-4366 | cve | Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1, N450 Model F9K1105V2, and N300 Model F7D2301v1 generate a predictable default WPA2-PSK passphrase based ... |
| 3.5 | 2012-11-18 | CVE-2012-4938 | cve | Cross-site scripting (XSS) vulnerability in the web interface in Pattern Insight 2.3 allows remote authenticated administrators to inject arbitrary web script or HTML via the ba... |
| Page(s) : 1 ... 260 261 262 263 264 265 266 267 268 269 [270] 271 272 273 274 275 276 277 278 279 280 ... | Result(s) : 8825 |
