| Page(s) : 1 ... 267 268 269 270 271 272 273 274 275 276 [277] 278 279 280 281 282 283 284 285 286 287 ... | Result(s) : 8826 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2012-09-16 | CVE-2012-3924 | cve | The SSLVPN implementation in Cisco IOS 15.1 and 15.2, when DTLS is enabled, does not properly handle certain outbound ACL configurations, which allows remote authenticated users... |
| 3.5 | 2012-09-16 | CVE-2012-3923 | cve | The SSLVPN implementation in Cisco IOS 12.4, 15.0, 15.1, and 15.2, when DTLS is not enabled, does not properly handle certain outbound ACL configurations, which allows remote au... |
| 2.6 | 2012-09-15 | CVE-2012-4930 | cve | The SPDY protocol 3 and earlier, as used in Mozilla Firefox, Google Chrome, and other products, can perform TLS encryption of compressed data without properly obfuscating the le... |
| 2.6 | 2012-09-15 | CVE-2012-4929 | cve | The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the u... |
| 3.5 | 2012-09-14 | CVE-2012-4422 | cve | wp-admin/plugins.php in WordPress before 3.4.2, when the multisite feature is enabled, does not check for network-administrator privileges before performing a network-wide activ... |
| 3.5 | 2012-09-10 | CVE-2012-0746 | cve | Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, ... |
| 2.1 | 2012-09-09 | CVE-2012-1648 | cve | Cross-site scripting (XSS) vulnerability in the Cool Aid module before 6.x-1.9 for Drupal allows remote authenticated users with the administer coolaid permission to inject arbi... |
| 3.5 | 2012-09-05 | CVE-2012-3529 | cve | The configuration module in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote authenticated backend users to obtain the encrypti... |
| 3.5 | 2012-09-05 | CVE-2012-3528 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allow remote authenticated backend us... |
| 3.6 | 2012-09-05 | CVE-2010-4819 | cve | The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a de... |
| 2.1 | 2012-09-04 | CVE-2012-2068 | cve | Multiple cross-site scripting (XSS) vulnerabilities in fancy_slide.module in the Fancy Slide module before 6.x-2.7 for Drupal allow remote authenticated users with the administe... |
| 3.5 | 2012-09-04 | CVE-2012-2065 | cve | Cross-site scripting (XSS) vulnerability in the Language Icons module 6.x-2.x before 6.x-2.1 and 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with adminis... |
| 3.5 | 2012-09-04 | CVE-2012-1613 | cve | Cross-site scripting (XSS) vulnerability in edit_one_pic.php in Coppermine Photo Gallery before 1.5.20 allows remote authenticated users with certain privileges to inject arbitr... |
| 3.5 | 2012-09-04 | CVE-2012-1606 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Backend component in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allow remote ... |
| 2.9 | 2012-09-04 | CVE-2012-3582 | cve | Symantec PGP Universal Server 3.2.x before 3.2.1 MP2 does not properly manage sessions that include key search requests, which might allow remote attackers to read a private key... |
| 2.6 | 2012-08-31 | CVE-2011-5146 | cve | Bokken before 1.6 and 1.5-x before 1.5-3 for Debian allows local users to overwrite arbitrary files via a symlink attack on /tmp/graph.dot. |
| 2.1 | 2012-08-31 | CVE-2012-3478 | cve | rssh 2.3.3 and earlier allows local users to bypass intended restricted shell access via crafted environment variables in the command line. |
| 2.1 | 2012-08-31 | CVE-2012-3380 | cve | Directory traversal vulnerability in naxsi-ui/nx_extract.py in the Naxsi module before 0.46-1 for Nginx allows local users to read arbitrary files via unspecified vectors. |
| 3.3 | 2012-08-31 | CVE-2012-3378 | cve | The register_application function in atk-adaptor/bridge.c in GNOME at-spi2-atk 2.5.2 does not seed the random number generator and generates predictable temporary file names, wh... |
| 2.1 | 2012-08-31 | CVE-2012-2658 | cve | Buffer overflow in the SQLDriverConnect function in unixODBC 2.3.1 allows local users to cause a denial of service (crash) via a long string in the DRIVER option. NOTE: this iss... |
| Page(s) : 1 ... 267 268 269 270 271 272 273 274 275 276 [277] 278 279 280 281 282 283 284 285 286 287 ... | Result(s) : 8826 |
