| Page(s) : 1 ... 274 275 276 277 278 279 280 281 282 283 [284] 285 286 287 288 289 290 291 292 293 294 ... | Result(s) : 9847 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2013-03-27 | CVE-2013-2715 | cve | Cross-site scripting (XSS) vulnerability in the admin view in the Search API (search_api) module 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain... |
| 1.5 | 2013-03-26 | CVE-2013-0525 | cve | Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to inject arbitrary web script or HTML via a shared mail file, aka SPR DKEN8PDNTX. |
| 3.5 | 2013-03-25 | CVE-2013-1833 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the File Picker module in Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allow ... |
| 3.5 | 2013-03-25 | CVE-2013-1835 | cve | Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 allows remote authenticated administrators to obtain sensitive information from the ext... |
| 3.6 | 2013-03-22 | CVE-2013-0914 | cve | The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easi... |
| 1.9 | 2013-03-22 | CVE-2013-2634 | cve | net/dcb/dcbnl.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a ... |
| 1.9 | 2013-03-22 | CVE-2013-2635 | cve | The rtnl_fill_ifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensiti... |
| 1.9 | 2013-03-22 | CVE-2013-2636 | cve | net/bridge/br_mdb.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a cr... |
| 3.5 | 2013-03-22 | CVE-2013-1840 | cve | The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote auth... |
| 3.5 | 2013-03-21 | CVE-2013-0672 | cve | Cross-site scripting (XSS) vulnerability in the HMI web application in Siemens WinCC (TIA Portal) 11 allows remote authenticated users to inject arbitrary web script or HTML via... |
| 3.6 | 2013-03-21 | RHSA-2013:0669 | RedHat | qt security update |
| 1.9 | 2013-03-21 | CVE-2013-1427 | cve | The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local users... |
| 3.5 | 2013-03-21 | CVE-2013-0453 | cve | Cross-site scripting (XSS) vulnerability in Web Reports in IBM Tivoli Endpoint Manager (TEM) before 8.2.1372 allows remote authenticated users to inject arbitrary web script or ... |
| 2.1 | 2013-03-20 | CVE-2013-0978 | cve | The ARM prefetch abort handler in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1 does not ensure that it has been invoked in an abort context, which makes it eas... |
| 1.9 | 2013-03-20 | CVE-2013-0979 | cve | lockdownd in Lockdown in Apple iOS before 6.1.3 does not properly consider file types during the permission-setting step of a backup restoration, which allows local users to cha... |
| 2.1 | 2013-03-20 | CVE-2013-0980 | cve | The Passcode Lock implementation in Apple iOS before 6.1.3 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode re... |
| 3.6 | 2013-03-20 | CVE-2013-1766 | cve | libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors. |
| 2.1 | 2013-03-19 | CVE-2013-0225 | cve | Cross-site scripting (XSS) vulnerability in the User Relationships module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.0-alpha5 for Drupal allows remote authenticated users w... |
| 2.1 | 2013-03-19 | CVE-2013-0227 | cve | Cross-site scripting (XSS) vulnerability in the Search API Sorts module 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain roles to inject arbitrar... |
| 1.9 | 2013-03-15 | DSA-2649 | Debian | lighttpd security update |
| Page(s) : 1 ... 274 275 276 277 278 279 280 281 282 283 [284] 285 286 287 288 289 290 291 292 293 294 ... | Result(s) : 9847 |
