| Page(s) : 1 ... 276 277 278 279 280 281 282 283 284 285 [286] 287 288 289 290 291 292 293 294 295 296 ... | Result(s) : 8828 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2012-06-26 | CVE-2012-2708 | cve | Cross-site scripting (XSS) vulnerability in the _hosting_task_log_table function in modules/hosting/task/hosting_task.module in the Hostmaster (Aegir) module 6.x-1.x before 6.x-... |
| 2.1 | 2012-06-26 | CVE-2012-2705 | cve | The filter_titles function in the Smart Breadcrumb module 6.x-1.x before 6.x-1.3 for Drupal does not properly convert a title to plain-text, which allows remote authenticated us... |
| 2.6 | 2012-06-26 | CVE-2012-2703 | cve | Cross-site scripting (XSS) vulnerability in the Advertisement module 6.x-2.x before 6.x-2.3 for Drupal, when debug mode is enabled, allows remote attackers to inject arbitrary w... |
| 3.5 | 2012-06-26 | CVE-2012-2381 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Apache Roller before 5.0.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging the blogg... |
| 2.1 | 2012-06-21 | CVE-2011-1160 | cve | The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive ... |
| 2.1 | 2012-06-21 | CVE-2011-1080 | cve | The do_replace function in net/bridge/netfilter/ebtables.c in the Linux kernel before 2.6.39 does not ensure that a certain name field ends with a '\0' character, whic... |
| 1.9 | 2012-06-21 | CVE-2011-1078 | cve | The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potenti... |
| 3.6 | 2012-06-21 | CVE-2011-1021 | cve | drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/de... |
| 1.9 | 2012-06-21 | CVE-2011-0006 | cve | The ima_lsm_rule_init function in security/integrity/ima/ima_policy.c in the Linux kernel before 2.6.37, when the Linux Security Modules (LSM) framework is disabled, allows loca... |
| 3.3 | 2012-06-21 | CVE-2010-4648 | cve | The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes... |
| 2.1 | 2012-06-21 | CVE-2012-2389 | cve | hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as... |
| 2.1 | 2012-06-21 | CVE-2011-2527 | cve | The change_process_uid function in os-posix.c in Qemu 0.14.0 and earlier does not properly drop group privileges when the -runas option is used, which allows local guest users t... |
| 2.6 | 2012-06-20 | CVE-2012-0717 | cve | IBM WebSphere Application Server 7.0 before 7.0.0.23, when a certain SSLv2 configuration with client authentication is used, allows remote attackers to bypass X.509 client-certi... |
| 2.6 | 2012-06-19 | CVE-2012-3587 | cve | APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import keyrings, relies on GnuPG argument order and does not check GPG subkeys, which might... |
| 2.6 | 2012-06-19 | CVE-2012-0954 | cve | APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import keyrings, relies on GnuPG argument order and does not check GPG subkeys, which might... |
| 3.7 | 2012-06-16 | CVE-2012-2693 | cve | libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might cause the wrong ... |
| 3.6 | 2012-06-16 | CVE-2012-2692 | cve | MantisBT before 1.2.11 does not check the delete_attachments_threshold permission when form_security_validation is set to OFF, which allows remote authenticated users with certa... |
| 2.1 | 2012-06-16 | CVE-2012-2672 | cve | Oracle Mojarra 2.1.7 does not properly "clean up" the FacesContext reference during startup, which allows local users to obtain context information an access resources from anot... |
| 3.7 | 2012-06-16 | CVE-2012-1720 | cve | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_3... |
| 2.1 | 2012-06-16 | CVE-2012-1717 | cve | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_3... |
| Page(s) : 1 ... 276 277 278 279 280 281 282 283 284 285 [286] 287 288 289 290 291 292 293 294 295 296 ... | Result(s) : 8828 |
