CVE List - 2012 / October
Showing 1 - 100 of 553 CVEs for October 2012 (Page 1 of 6)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2012-1588 | 2012-10-01 | Algorithmic complexity vulnerability in the _filter_url function in the text... |
| CVE-2012-1590 | 2012-10-01 | The forum list in Drupal 7.x before 7.14 does not... |
| CVE-2012-1591 | 2012-10-01 | The image module in Drupal 7.x before 7.14 does not... |
| CVE-2012-2153 | 2012-10-01 | Drupal 7.x before 7.14 does not properly restrict access to... |
| CVE-2012-2240 | 2012-10-01 | scripts/dscverify.pl in devscripts before 2.12.3 allows remote attackers to execute... |
| CVE-2012-2241 | 2012-10-01 | scripts/dget.pl in devscripts before 2.12.3 allows remote attackers to delete... |
| CVE-2012-2242 | 2012-10-01 | scripts/dget.pl in devscripts before 2.10.73 allows remote attackers to execute... |
| CVE-2012-3500 | 2012-10-01 | scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before... |
| CVE-2012-4429 | 2012-10-01 | Vino 2.28, 2.32, 3.4.2, and earlier allows remote attackers to... |
| CVE-2011-4551 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in tiki-cookie-jar.php in TikiWiki CMS/Groupware before... |
| CVE-2012-4432 | 2012-10-01 | Use-after-free vulnerability in opngreduc.c in OptiPNG Hg and 0.7.x before... |
| CVE-2012-4437 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in the SmartyException class in Smarty... |
| CVE-2012-4450 | 2012-10-01 | 389 Directory Server 1.2.10 does not properly update the ACL... |
| CVE-2012-4415 | 2012-10-01 | Stack-based buffer overflow in the guac_client_plugin_open function in libguac in... |
| CVE-2012-4427 | 2012-10-01 | The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to... |
| CVE-2012-0748 | 2012-10-01 | Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified services in... |
| CVE-2012-3035 | 2012-10-01 | Buffer overflow in Emerson DeltaV 9.3.1 and 10.3 through 11.3.1... |
| CVE-2012-3319 | 2012-10-01 | IBM Rational Business Developer 8.x before 8.0.1.4 allows remote attackers... |
| CVE-2012-4830 | 2012-10-01 | Unspecified vulnerability in IBM WebSphere Commerce 6.0 through 6.0.0.11 and... |
| CVE-2012-4833 | 2012-10-01 | fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25... |
| CVE-2011-5202 | 2012-10-01 | BazisVirtualCDBus.sys in WinCDEmu 3.6 allows local users to cause a... |
| CVE-2012-1576 | 2012-10-01 | The myuser_delete function in libathemecore/account.c in Atheme 5.x before 5.2.7,... |
| CVE-2012-1639 | 2012-10-01 | Multiple cross-site scripting (XSS) vulnerabilities in product/commerce_product.module in the Drupal... |
| CVE-2012-5223 | 2012-10-01 | The proc_deutf function in includes/functions_vbseocp_abstract.php in vBSEO 3.5.0, 3.5.1, 3.5.2,... |
| CVE-2012-5224 | 2012-10-01 | PHP remote file inclusion vulnerability in vb/includes/vba_cmps_include_bottom.php in vBadvanced CMPS... |
| CVE-2012-5225 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in webscr.php in xClick Cart 1.0.1... |
| CVE-2012-5226 | 2012-10-01 | Multiple cross-site scripting (XSS) vulnerabilities in Peel SHOPPING 2.8 and... |
| CVE-2012-5227 | 2012-10-01 | SQL injection vulnerability in administrer/tva.php in Peel SHOPPING 2.8 and... |
| CVE-2012-5228 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in admin/index.php in phplist 2.10.9, 2.10.17,... |
| CVE-2012-5229 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in css/gallery-css.php in the Slideshow Gallery2... |
| CVE-2012-5230 | 2012-10-01 | Unspecified vulnerability in the JE Story Submit (com_jesubmit) component before... |
| CVE-2012-5231 | 2012-10-01 | miniCMS 1.0 and 2.0 allows remote attackers to execute arbitrary... |
| CVE-2012-5232 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in the Quickl Form component for... |
| CVE-2012-1897 | 2012-10-01 | Multiple cross-site request forgery (CSRF) vulnerabilities in Wolf CMS 0.75... |
| CVE-2012-1898 | 2012-10-01 | Multiple cross-site scripting (XSS) vulnerabilities in wolfcms/admin/user/add in Wolf CMS... |
| CVE-2012-0989 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in OneOrZero AIMS 2.8.0 Trial Edition... |
| CVE-2012-1636 | 2012-10-01 | Cross-site request forgery (CSRF) vulnerability in the stickynote module before... |
| CVE-2012-5233 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in the stickynote module before 7.x-1.1... |
| CVE-2011-4945 | 2012-10-01 | PolicyKit 0.103 sets the AdminIdentities to "wheel" by default, which... |
| CVE-2012-4063 | 2012-10-01 | The Apache Santuario configuration in Eucalyptus before 3.1.1 does not... |
| CVE-2012-4242 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in the MF Gig Calendar plugin... |
| CVE-2012-1470 | 2012-10-01 | Multiple cross-site scripting (XSS) vulnerabilities in code_editor.php in ocPortal before... |
| CVE-2012-1471 | 2012-10-01 | Directory traversal vulnerability in catalogue_file.php in ocPortal before 7.1.6 allows... |
| CVE-2012-1602 | 2012-10-01 | user.php in NextBBS 0.6 allows remote attackers to bypass authentication... |
| CVE-2012-1603 | 2012-10-01 | Multiple SQL injection vulnerabilities in ajaxserver.php in NextBBS 0.6 allow... |
| CVE-2012-1604 | 2012-10-01 | Cross-site scripting (XSS) vulnerability in NextBBS 0.6 allows remote attackers... |
| CVE-2012-4064 | 2012-10-01 | Eucalyptus before 3.1.1 does not properly restrict the binding of... |
| CVE-2012-4065 | 2012-10-01 | Eucalyptus before 3.1.1 does not properly restrict the binding of... |
| CVE-2012-5234 | 2012-10-01 | Open redirect vulnerability in index.php in ocPortal before 7.1.6 allows... |
| CVE-2012-0691 | 2012-10-02 | CA License (aka CA Licensing) before 1.90.03 does not properly... |
| CVE-2012-0692 | 2012-10-02 | CA License (aka CA Licensing) before 1.90.03 allows local users... |
| CVE-2012-3314 | 2012-10-02 | IBM Tivoli Federated Identity Manager (TFIM) and Tivoli Federated Identity... |
| CVE-2012-3266 | 2012-10-02 | Unspecified vulnerability in IBRIX 6.1.196 through 6.1.251 on HP IBRIX... |
| CVE-2011-1833 | 2012-10-03 | Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the... |
| CVE-2012-3375 | 2012-10-03 | The epoll_ctl system call in fs/eventpoll.c in the Linux kernel... |
| CVE-2012-3400 | 2012-10-03 | Heap-based buffer overflow in the udf_load_logicalvol function in fs/udf/super.c in... |
| CVE-2012-3412 | 2012-10-03 | The sfc (aka Solarflare Solarstorm) driver in the Linux kernel... |
| CVE-2012-3430 | 2012-10-03 | The rds_recvmsg function in net/rds/recv.c in the Linux kernel before... |
| CVE-2012-3510 | 2012-10-03 | Use-after-free vulnerability in the xacct_add_tsk function in kernel/tsacct.c in the... |
| CVE-2012-3511 | 2012-10-03 | Multiple race conditions in the madvise_remove function in mm/madvise.c in... |
| CVE-2012-3520 | 2012-10-03 | The Netlink implementation in the Linux kernel before 3.2.30 does... |
| CVE-2012-3552 | 2012-10-03 | Race condition in the IP implementation in the Linux kernel... |
| CVE-2011-3209 | 2012-10-03 | The div_long_long_rem implementation in include/asm-x86/div64.h in the Linux kernel before... |
| CVE-2012-3488 | 2012-10-03 | The libxslt support in contrib/xml2 in PostgreSQL 8.3 before 8.3.20,... |
| CVE-2012-3489 | 2012-10-03 | The xml_parse function in the libxml2 support in the core... |
| CVE-2012-3267 | 2012-10-04 | Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.20... |
| CVE-2012-3819 | 2012-10-04 | Stack consumption vulnerability in dartwebserver.dll 1.9 and earlier, as used... |
| CVE-2012-5288 | 2012-10-04 | SQL injection vulnerability in page.php in phpMyDirectory 1.3.3 allows remote... |
| CVE-2012-5289 | 2012-10-04 | Multiple SQL injection vulnerabilities in Plogger 1.0 RC1 allow remote... |
| CVE-2012-5290 | 2012-10-04 | Multiple SQL injection vulnerabilities in EasyWebRealEstate allow remote attackers to... |
| CVE-2012-5291 | 2012-10-04 | SQL injection vulnerability in team.php in Posse Softball Director CMS... |
| CVE-2012-5292 | 2012-10-04 | Multiple SQL injection vulnerabilities in Atar2b CMS 4.0.1 allow remote... |
| CVE-2012-5293 | 2012-10-04 | Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3... |
| CVE-2011-5203 | 2012-10-04 | SQL injection vulnerability in WB/Default.asp in Akiva WebBoard before 8... |
| CVE-2011-5205 | 2012-10-04 | Cross-site scripting (XSS) vulnerability in audl.php in Rapidleech 2.3 rev42... |
| CVE-2011-5206 | 2012-10-04 | Cross-site scripting (XSS) vulnerability in notes.php in Rapidleech before 2.3... |
| CVE-2011-5207 | 2012-10-04 | Cross-site scripting (XSS) vulnerability in admin/OptionsPostsList.php in the TheCartPress plugin... |
| CVE-2012-5294 | 2012-10-04 | SQL injection vulnerability in art_detalle.php in MyStore Xpress Tienda Virtual... |
| CVE-2012-5295 | 2012-10-04 | Cross-site scripting (XSS) vulnerability in login.cfm in FuseTalk Forums 3.2... |
| CVE-2012-5296 | 2012-10-04 | Multiple cross-site scripting (XSS) vulnerabilities in Mavili Guestbook, as released... |
| CVE-2012-5297 | 2012-10-04 | SQL injection vulnerability in edit.asp in Mavili Guestbook, as released... |
| CVE-2012-5298 | 2012-10-04 | Mavili Guestbook, as released in November 2007, stores guestbook.mdb under... |
| CVE-2012-5299 | 2012-10-04 | Mavili Guestbook, as released in November 2007, allows remote attackers... |
| CVE-2012-5300 | 2012-10-04 | SQL injection vulnerability in art_catalogo.php in MyStore Xpress Tienda Virtual... |
| CVE-2011-5204 | 2012-10-04 | Akiva WebBoard 8.x stores passwords in plaintext, which allows local... |
| CVE-2012-2999 | 2012-10-04 | Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface... |
| CVE-2012-5237 | 2012-10-04 | The dissect_hsrp function in epan/dissectors/packet-hsrp.c in the HSRP dissector in... |
| CVE-2012-5238 | 2012-10-04 | epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.3... |
| CVE-2012-5240 | 2012-10-04 | Buffer overflow in the dissect_tlv function in epan/dissectors/packet-ldp.c in the... |
| CVE-2012-5301 | 2012-10-04 | The default configuration of Cerberus FTP Server before 5.0.4.0 supports... |
| CVE-2012-4018 | 2012-10-05 | Cross-site scripting (XSS) vulnerability in Final Beta Laboratory MyWebSearch before... |
| CVE-2012-4894 | 2012-10-05 | Google SketchUp before 8.0.14346 (aka 8 Maintenance 3) allows user-assisted... |
| CVE-2012-4895 | 2012-10-05 | Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers... |
| CVE-2012-4896 | 2012-10-05 | Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers... |
| CVE-2012-4897 | 2012-10-05 | Untrusted search path vulnerability in the installer in VMware Movie... |
| CVE-2012-5050 | 2012-10-05 | Cross-site scripting (XSS) vulnerability in the server in VMware vCenter... |
| CVE-2012-5051 | 2012-10-05 | Directory traversal vulnerability in VMware CapacityIQ 1.5.x allows remote attackers... |
| CVE-2012-4443 | 2012-10-05 | Monkey HTTP Daemon 0.9.3 uses a real UID of root... |
| CVE-2012-0845 | 2012-10-05 | SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3,... |
| CVE-2012-1150 | 2012-10-05 | Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and... |