CVE List - 2012 / November
Showing 201 - 300 of 436 CVEs for November 2012 (Page 3 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2012-5893 | 2012-11-17 | Unrestricted file upload vulnerability in hava_upload.php in Havalite CMS 1.1.0... |
| CVE-2012-5894 | 2012-11-17 | SQL injection vulnerability in hava_post.php in Havalite CMS 1.1.0 and... |
| CVE-2012-5895 | 2012-11-17 | Multiple unspecified vulnerabilities in iRODS before 3.1 have unknown impact... |
| CVE-2012-5896 | 2012-11-17 | The Annotation Objects Extension ActiveX control in AnnotateX.dll in Quest... |
| CVE-2012-5897 | 2012-11-17 | The (1) SimpleTree and (2) ReportTree classes in the ARDoc... |
| CVE-2012-5901 | 2012-11-17 | DFLabs PTK 1.0.5 stores data files with predictable names under... |
| CVE-2012-5902 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in ptk/lib/modal_bookmark.php in DFLabs PTK 1.0.5... |
| CVE-2012-5903 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 2.0.2... |
| CVE-2012-5904 | 2012-11-17 | Heap-based buffer overflow in IrfanView before 4.33 allows remote attackers... |
| CVE-2012-5905 | 2012-11-17 | Buffer overflow in KnFTPd 1.0.0 allows remote authenticated users to... |
| CVE-2012-5906 | 2012-11-17 | Multiple cross-site scripting (XSS) vulnerabilities in GreenBrowser 6.1.0117 and 6.1.0216... |
| CVE-2012-5907 | 2012-11-17 | Directory traversal vulnerability in json.php in TomatoCart 1.2.0 Alpha 2... |
| CVE-2012-5908 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard)... |
| CVE-2012-5909 | 2012-11-17 | SQL injection vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6... |
| CVE-2012-5910 | 2012-11-17 | SQL injection vulnerability in blogs/htsrv/viewfile.php in b2evolution 4.1.3 allows remote... |
| CVE-2012-5911 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in blogs/blog1.php in b2evolution 4.1.3 allows... |
| CVE-2012-5912 | 2012-11-17 | Multiple SQL injection vulnerabilities in PicoPublisher 2.0 allow remote attackers... |
| CVE-2012-5913 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in wp-integrator.php in the WordPress Integrator... |
| CVE-2012-5914 | 2012-11-17 | Multiple cross-site scripting (XSS) vulnerabilities in the sed_import function in... |
| CVE-2012-5915 | 2012-11-17 | Neocrome Seditio build 161 and earlier allows remote attackers to... |
| CVE-2012-5916 | 2012-11-17 | Neocrome Seditio build 161 allows remote attackers to obtain sensitive... |
| CVE-2012-5917 | 2012-11-17 | SnackAmp 3.1.3 allows remote attackers to cause a denial of... |
| CVE-2012-5891 | 2012-11-17 | Multiple cross-site request forgery (CSRF) vulnerabilities in photo/pass.php in DAlbum... |
| CVE-2012-5898 | 2012-11-17 | Cross-site request forgery (CSRF) vulnerability in SAMEDIA LandShop 0.9.2 allows... |
| CVE-2012-5899 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in admin/action/objects.php in SAMEDIA LandShop 0.9.2... |
| CVE-2012-5900 | 2012-11-17 | Multiple SQL injection vulnerabilities in SAMEDIA LandShop 0.9.2 allow remote... |
| CVE-2012-4575 | 2012-11-18 | The add_database function in objects.c in the pgbouncer pooler 1.5.2... |
| CVE-2012-4956 | 2012-11-18 | Heap-based buffer overflow in NFRAgent.exe in Novell File Reporter 1.0.2... |
| CVE-2012-4957 | 2012-11-18 | Absolute path traversal vulnerability in NFRAgent.exe in Novell File Reporter... |
| CVE-2012-4958 | 2012-11-18 | Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2... |
| CVE-2012-4959 | 2012-11-18 | Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2... |
| CVE-2012-4935 | 2012-11-18 | Cross-site request forgery (CSRF) vulnerability in the web interface in... |
| CVE-2012-4936 | 2012-11-18 | The web interface in Pattern Insight 2.3 allows remote attackers... |
| CVE-2012-4937 | 2012-11-18 | Session fixation vulnerability in the web interface in Pattern Insight... |
| CVE-2012-4938 | 2012-11-18 | Cross-site scripting (XSS) vulnerability in the web interface in Pattern... |
| CVE-2012-4941 | 2012-11-18 | Multiple SQL injection vulnerabilities in Agile FleetCommander and FleetCommander Kiosk... |
| CVE-2012-4942 | 2012-11-18 | Multiple cross-site scripting (XSS) vulnerabilities in Agile FleetCommander and FleetCommander... |
| CVE-2012-4943 | 2012-11-18 | Multiple cross-site request forgery (CSRF) vulnerabilities in Agile FleetCommander and... |
| CVE-2012-4944 | 2012-11-18 | Multiple unrestricted file upload vulnerabilities in Agile FleetCommander and FleetCommander... |
| CVE-2012-4945 | 2012-11-18 | Agile FleetCommander and FleetCommander Kiosk before 4.08 allow remote attackers... |
| CVE-2012-4946 | 2012-11-18 | Agile FleetCommander and FleetCommander Kiosk before 4.08 use an XOR... |
| CVE-2012-4947 | 2012-11-18 | Agile FleetCommander and FleetCommander Kiosk before 4.08 store database credentials... |
| CVE-2012-4950 | 2012-11-18 | Cross-site scripting (XSS) vulnerability in the Keyword Search page in... |
| CVE-2012-4417 | 2012-11-18 | GlusterFS 3.3.0, as used in Red Hat Storage server 2.0,... |
| CVE-2012-4433 | 2012-11-18 | Multiple integer overflows in operations/external/ppm-load.c in GEGL (Generic Graphics Library)... |
| CVE-2012-4520 | 2012-11-18 | The django.http.HttpRequest.get_host function in Django 1.3.x before 1.3.4 and 1.4.x... |
| CVE-2012-4552 | 2012-11-18 | Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in... |
| CVE-2012-4533 | 2012-11-19 | Cross-site scripting (XSS) vulnerability in the "extra" details in the... |
| CVE-2011-0433 | 2012-11-19 | Heap-based buffer overflow in the linetoken function in afmparse.c in... |
| CVE-2011-5244 | 2012-11-19 | Multiple off-by-one errors in the (1) token and (2) linetoken... |
| CVE-2012-4225 | 2012-11-19 | NVIDIA UNIX graphics driver before 295.71 and before 304.32 allows... |
| CVE-2012-4233 | 2012-11-19 | LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org... |
| CVE-2012-4423 | 2012-11-19 | The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers... |
| CVE-2012-5854 | 2012-11-19 | Heap-based buffer overflow in WeeChat 0.3.6 through 0.3.9 allows remote... |
| CVE-2012-5919 | 2012-11-19 | Multiple cross-site scripting (XSS) vulnerabilities in Havalite 1.0.4 and earlier... |
| CVE-2011-2486 | 2012-11-19 | nspluginwrapper before 1.4.4 does not properly provide access to NPNVprivateModeBool... |
| CVE-2012-4541 | 2012-11-19 | Cross-site scripting (XSS) vulnerability in Piwik before 1.9 allows remote... |
| CVE-2012-5918 | 2012-11-19 | razorCMS 1.2 allows remote authenticated users to access administrator directories... |
| CVE-2012-3354 | 2012-11-20 | doku.php in DokuWiki, as used in Fedora 16, 17, and... |
| CVE-2012-4366 | 2012-11-20 | Belkin wireless routers Surf N150 Model F7D1301v1, N900 Model F9K1104v1,... |
| CVE-2012-4510 | 2012-11-20 | cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile... |
| CVE-2012-4523 | 2012-11-20 | radsecproxy before 1.6.1 does not properly verify certificates when there... |
| CVE-2012-4563 | 2012-11-20 | Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4... |
| CVE-2012-5519 | 2012-11-20 | CUPS 1.4.4, when running in certain Linux distributions such as... |
| CVE-2012-5529 | 2012-11-20 | TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled,... |
| CVE-2012-5920 | 2012-11-20 | Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4... |
| CVE-2011-4612 | 2012-11-20 | icecast before 2.3.3 allows remote attackers to inject control characters... |
| CVE-2012-4566 | 2012-11-20 | The DTLS support in radsecproxy before 1.6.2 does not properly... |
| CVE-2012-5674 | 2012-11-20 | Unspecified vulnerability in Adobe ColdFusion 10 before Update 5, when... |
| CVE-2012-5703 | 2012-11-20 | The vSphere API in VMware ESXi 4.1 and ESX 4.1... |
| CVE-2012-4201 | 2012-11-21 | The evalInSandbox implementation in Mozilla Firefox before 17.0, Firefox ESR... |
| CVE-2012-4202 | 2012-11-21 | Heap-based buffer overflow in the image::RasterImage::DrawFrameTo function in Mozilla Firefox... |
| CVE-2012-4203 | 2012-11-21 | The New Tab page in Mozilla Firefox before 17.0 uses... |
| CVE-2012-4204 | 2012-11-21 | The str_unescape function in the JavaScript engine in Mozilla Firefox... |
| CVE-2012-4205 | 2012-11-21 | Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before... |
| CVE-2012-4206 | 2012-11-21 | Untrusted search path vulnerability in the installer in Mozilla Firefox... |
| CVE-2012-4207 | 2012-11-21 | The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox... |
| CVE-2012-4208 | 2012-11-21 | The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunderbird before... |
| CVE-2012-4209 | 2012-11-21 | Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird... |
| CVE-2012-4210 | 2012-11-21 | The Style Inspector in Mozilla Firefox before 17.0 and Firefox... |
| CVE-2012-4212 | 2012-11-21 | Use-after-free vulnerability in the XPCWrappedNative::Mark function in Mozilla Firefox before... |
| CVE-2012-4213 | 2012-11-21 | Use-after-free vulnerability in the nsEditor::FindNextLeafNode function in Mozilla Firefox before... |
| CVE-2012-4214 | 2012-11-21 | Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before... |
| CVE-2012-4215 | 2012-11-21 | Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before... |
| CVE-2012-4216 | 2012-11-21 | Use-after-free vulnerability in the gfxFont::GetFontEntry function in Mozilla Firefox before... |
| CVE-2012-4217 | 2012-11-21 | Use-after-free vulnerability in the nsViewManager::ProcessPendingUpdates function in Mozilla Firefox before... |
| CVE-2012-4218 | 2012-11-21 | Use-after-free vulnerability in the BuildTextRunsScanner::BreakSink::SetBreaks function in Mozilla Firefox before... |
| CVE-2012-5471 | 2012-11-21 | The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9,... |
| CVE-2012-5472 | 2012-11-21 | lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3... |
| CVE-2012-5473 | 2012-11-21 | The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x... |
| CVE-2012-5479 | 2012-11-21 | The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before... |
| CVE-2012-5480 | 2012-11-21 | The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x... |
| CVE-2012-5481 | 2012-11-21 | Moodle 2.3.x before 2.3.3 allows remote authenticated users to bypass... |
| CVE-2012-5829 | 2012-11-21 | Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox... |
| CVE-2012-5830 | 2012-11-21 | Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x... |
| CVE-2012-5833 | 2012-11-21 | The texImage2D implementation in the WebGL subsystem in Mozilla Firefox... |
| CVE-2012-5835 | 2012-11-21 | Integer overflow in the WebGL subsystem in Mozilla Firefox before... |
| CVE-2012-5836 | 2012-11-21 | Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before... |
| CVE-2012-5837 | 2012-11-21 | The Web Developer Toolbar in Mozilla Firefox before 17.0 executes... |
| CVE-2012-5838 | 2012-11-21 | The copyTexImage2D implementation in the WebGL subsystem in Mozilla Firefox... |