| Page(s) : 1 ... 284 285 286 287 288 289 290 291 292 293 [294] 295 296 297 298 299 300 301 302 303 304 ... | Result(s) : 9848 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2012-12-05 | CVE-2009-2899 | cve | The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3 allows local users to obtain the database password by listing the process and its ar... |
| 1.9 | 2012-12-03 | CVE-2012-0218 | cve | Xen 3.4, 4.0, and 4.1, when the guest OS has not registered a handler for a syscall or sysenter instruction, does not properly clear a flag for exception injection when injectin... |
| 1.9 | 2012-12-03 | CVE-2012-2934 | cve | Xen 4.0, and 4.1, when running a 64-bit PV guest on "older" AMD CPUs, does not properly protect against a certain AMD processor bug, which allows local guest OS users to cause a... |
| 1.9 | 2012-12-03 | CVE-2012-3432 | cve | The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information b... |
| 2.1 | 2012-12-03 | CVE-2012-5538 | cve | Cross-site scripting (XSS) vulnerability in the FileField Sources module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.6 for Drupal, when the field has "Reference existing" so... |
| 3.5 | 2012-12-03 | CVE-2012-5539 | cve | The Organic Groups (OG) module 7.x-1.x before 7.x-1.5 for Drupal does not properly maintain pending group memberships, which allows remote authenticated users to post to arbitra... |
| 2.1 | 2012-12-03 | CVE-2012-5545 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the ShareThis module 7.x-2.x before 7.x-2.5 for Drupal allow remote authenticated users with the "administer sharethis" pe... |
| 2.1 | 2012-12-03 | CVE-2012-5553 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users wit... |
| 3.6 | 2012-12-03 | CVE-2012-5557 | cve | The User Read-Only module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.4 for Drupal, does not properly assign roles when there are more than three roles on the site and certa... |
| 2.6 | 2012-12-03 | CVE-2012-5559 | cve | Cross-site scripting (XSS) vulnerability in the page manager node view task in the Chaos tool suite (ctools) module 6.x-1.x before 6.x-1.10 for Drupal allows remote authenticate... |
| 3.5 | 2012-12-03 | CVE-2012-6064 | cve | Directory traversal vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) before 1.11.2.1 allows remote authenticated administrators to delete arbi... |
| 2.6 | 2012-11-30 | CVE-2012-4469 | cve | Cross-site scripting (XSS) vulnerability in the Hashcash module 6.x-2.x before 6.x-2.6 and 7.x-2.x before 7.x-2.2 for Drupal, when "Log failed hashcash" is enabled, allows remot... |
| 3.5 | 2012-11-30 | CVE-2012-4473 | cve | The Restrict node page view module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "view any node page" or "view any node {type} page" permission to... |
| 2.1 | 2012-11-30 | CVE-2012-4571 | cve | Python Keyring 0.9.1 does not securely initialize the cipher when encrypting passwords for CryptedFileKeyring files, which makes it easier for local users to obtain passwords vi... |
| 2.1 | 2012-11-29 | CVE-2012-5530 | cve | The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### te... |
| 2.1 | 2012-11-27 | CVE-2012-4615 | cve | EMC Smarts Network Configuration Manager (NCM) before 9.1 uses a hardcoded encryption key for the storage of credentials, which allows local users to obtain sensitive informatio... |
| 2.1 | 2012-11-24 | CVE-2012-0959 | cve | Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials. |
| 3.3 | 2012-11-23 | CVE-2012-2377 | cve | JGroups diagnostics service in JBoss Enterprise Portal Platform before 5.2.2, SOA Platform before 5.3.0, and BRMS Platform before 5.3.0, is enabled without authentication when s... |
| 2.1 | 2012-11-23 | CVE-2012-3494 | cve | The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest ... |
| 1.9 | 2012-11-21 | CVE-2012-4535 | cve | Xen 3.4 through 4.2, and possibly earlier versions, allows local guest OS administrators to cause a denial of service (Xen infinite loop and physical CPU consumption) by setting... |
| Page(s) : 1 ... 284 285 286 287 288 289 290 291 292 293 [294] 295 296 297 298 299 300 301 302 303 304 ... | Result(s) : 9848 |
