| Page(s) : 1 ... 275 276 277 278 279 280 281 282 283 284 [285] 286 287 288 289 290 291 292 293 294 295 ... | Result(s) : 8828 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2012-06-30 | CVE-2012-2394 | cve | Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium platforms does not properly perform data alignment for a certain structure member, which allows rem... |
| 3.3 | 2012-06-30 | CVE-2012-2393 | cve | epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, wh... |
| 3.3 | 2012-06-30 | CVE-2012-2392 | cve | Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) I... |
| 2.1 | 2012-06-29 | CVE-2012-2690 | cve | virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might a... |
| 2.6 | 2012-06-29 | CVE-2012-1164 | cve | slapd in OpenLDAP before 2.4.30 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an LDAP search query with attrsOnly set to true, whi... |
| 3.6 | 2012-06-29 | CVE-2012-1122 | cve | bug_actiongroup.php in MantisBT before 1.2.9 does not properly check the report_bug_threshold permission of the receiving project when moving a bug report, which allows remote a... |
| 3.6 | 2012-06-29 | CVE-2012-1120 | cve | The SOAP API in MantisBT before 1.2.9 does not properly enforce the bugnote_allow_user_edit_delete and delete_bug_threshold permissions, which allows remote authenticated users ... |
| 2.1 | 2012-06-29 | CVE-2012-0813 | cve | Wicd before 1.7.1 saves sensitive information in log files in /var/log/wicd, which allows context-dependent attackers to obtain passwords and other sensitive information. |
| 2.1 | 2012-06-29 | CVE-2012-3818 | cve | The fpm exporter in Revelation 0.4.13-2 and earlier encrypts the version number but not the password when exporting a file, which might allow local users to obtain sensitive inf... |
| 3.6 | 2012-06-27 | CVE-2012-2451 | cve | The Config::IniFiles module before 2.71 for Perl creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. NOT... |
| 3.6 | 2012-06-27 | CVE-2012-1989 | cve | telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise (PE) 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows local users to overwrite arbitrary files via a symlink attack on t... |
| 2.6 | 2012-06-27 | CVE-2011-4940 | cve | The list_directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset para... |
| 2.1 | 2012-06-26 | CVE-2012-3800 | cve | Cross-site scripting (XSS) vulnerability in og.js in the Organic Groups (OG) module 6.x-2.x before 6.x-2.4 for Drupal, when used with the Vertical Tabs module, allows remote aut... |
| 2.6 | 2012-06-26 | CVE-2012-2731 | cve | The Ubercart AJAX Cart 6.x-2.x before 6.x-2.1 for Drupal stores the PHP session id in the JavaScript settings array in page loads, which might allow remote attackers to obtain s... |
| 2.1 | 2012-06-26 | CVE-2012-2726 | cve | Cross-site scripting (XSS) vulnerability in the Protest module 6.x-1.x before 6.x-1.2 or 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "administer... |
| 3.5 | 2012-06-26 | CVE-2012-2725 | cve | classes/Filter/WhitelistedExternalFilter.php in the Authoring HTML module 6.x-1.x before 6.x-1.1 for Drupal does not properly validate sources with the host white list, which al... |
| 2.6 | 2012-06-26 | CVE-2012-2723 | cve | Cross-site scripting (XSS) vulnerability in the Maestro module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with maestro admin permissions to inject arbit... |
| 2.6 | 2012-06-26 | CVE-2012-2712 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Search API module 7.x-1.x before 7.x-1.1 for Drupal, when supporting manual entry of field identifiers, allow remote a... |
| 2.1 | 2012-06-26 | CVE-2012-2711 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy List module 6.x-1.x before 6.x-1.4 for Drupal allow remote authenticated users with create or edit taxonomy t... |
| 2.6 | 2012-06-26 | CVE-2012-2710 | cve | Cross-site scripting (XSS) vulnerability in the Zen module 6.x-1.x before 6.x-1.1 for Drupal, when "Append the content title to the end of the breadcrumb" is enabled, allows rem... |
| Page(s) : 1 ... 275 276 277 278 279 280 281 282 283 284 [285] 286 287 288 289 290 291 292 293 294 295 ... | Result(s) : 8828 |
