| Page(s) : 1 ... 301 302 303 304 305 306 307 308 309 310 [311] 312 313 314 315 316 317 318 319 320 321 ... | Result(s) : 9848 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.6 | 2012-06-29 | CVE-2012-1120 | cve | The SOAP API in MantisBT before 1.2.9 does not properly enforce the bugnote_allow_user_edit_delete and delete_bug_threshold permissions, which allows remote authenticated users ... |
| 3.6 | 2012-06-29 | CVE-2012-1122 | cve | bug_actiongroup.php in MantisBT before 1.2.9 does not properly check the report_bug_threshold permission of the receiving project when moving a bug report, which allows remote a... |
| 2.6 | 2012-06-29 | CVE-2012-1164 | cve | slapd in OpenLDAP before 2.4.30 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an LDAP search query with attrsOnly set to true, whi... |
| 2.1 | 2012-06-29 | CVE-2012-2690 | cve | virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might a... |
| 1.9 | 2012-06-28 | USN-1485-1 | Ubuntu | AccountsService vulnerability |
| 2.6 | 2012-06-27 | CVE-2011-4940 | cve | The list_directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset para... |
| 3.6 | 2012-06-27 | CVE-2012-1989 | cve | telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise (PE) 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows local users to overwrite arbitrary files via a symlink attack on t... |
| 3.6 | 2012-06-27 | CVE-2012-2451 | cve | The Config::IniFiles module before 2.71 for Perl creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. NOT... |
| 3.5 | 2012-06-26 | CVE-2012-2381 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Apache Roller before 5.0.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging the blogg... |
| 2.6 | 2012-06-26 | CVE-2012-2703 | cve | Cross-site scripting (XSS) vulnerability in the Advertisement module 6.x-2.x before 6.x-2.3 for Drupal, when debug mode is enabled, allows remote attackers to inject arbitrary w... |
| 2.1 | 2012-06-26 | CVE-2012-2705 | cve | The filter_titles function in the Smart Breadcrumb module 6.x-1.x before 6.x-1.3 for Drupal does not properly convert a title to plain-text, which allows remote authenticated us... |
| 2.1 | 2012-06-26 | CVE-2012-2708 | cve | Cross-site scripting (XSS) vulnerability in the _hosting_task_log_table function in modules/hosting/task/hosting_task.module in the Hostmaster (Aegir) module 6.x-1.x before 6.x-... |
| 2.6 | 2012-06-26 | CVE-2012-2710 | cve | Cross-site scripting (XSS) vulnerability in the Zen module 6.x-1.x before 6.x-1.1 for Drupal, when "Append the content title to the end of the breadcrumb" is enabled, allows rem... |
| 2.1 | 2012-06-26 | CVE-2012-2711 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy List module 6.x-1.x before 6.x-1.4 for Drupal allow remote authenticated users with create or edit taxonomy t... |
| 2.6 | 2012-06-26 | CVE-2012-2712 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Search API module 7.x-1.x before 7.x-1.1 for Drupal, when supporting manual entry of field identifiers, allow remote a... |
| 2.6 | 2012-06-26 | CVE-2012-2723 | cve | Cross-site scripting (XSS) vulnerability in the Maestro module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with maestro admin permissions to inject arbit... |
| 3.5 | 2012-06-26 | CVE-2012-2725 | cve | classes/Filter/WhitelistedExternalFilter.php in the Authoring HTML module 6.x-1.x before 6.x-1.1 for Drupal does not properly validate sources with the host white list, which al... |
| 2.1 | 2012-06-26 | CVE-2012-2726 | cve | Cross-site scripting (XSS) vulnerability in the Protest module 6.x-1.x before 6.x-1.2 or 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "administer... |
| 2.6 | 2012-06-26 | CVE-2012-2731 | cve | The Ubercart AJAX Cart 6.x-2.x before 6.x-2.1 for Drupal stores the PHP session id in the JavaScript settings array in page loads, which might allow remote attackers to obtain s... |
| 2.1 | 2012-06-26 | CVE-2012-3800 | cve | Cross-site scripting (XSS) vulnerability in og.js in the Organic Groups (OG) module 6.x-2.x before 6.x-2.4 for Drupal, when used with the Vertical Tabs module, allows remote aut... |
| Page(s) : 1 ... 301 302 303 304 305 306 307 308 309 310 [311] 312 313 314 315 316 317 318 319 320 321 ... | Result(s) : 9848 |
