CVE List - 2012 / September
Showing 401 - 500 of 655 CVEs for September 2012 (Page 5 of 7)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2011-4960 | 2012-09-17 | SQL injection vulnerability in the Folder::findOrMake method in SilverStripe 2.3.x... |
| CVE-2011-4961 | 2012-09-17 | SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6 allows remote... |
| CVE-2011-4962 | 2012-09-17 | code/sitefeatures/PageCommentInterface.php in SilverStripe 2.4.x before 2.4.6 might allow remote attackers... |
| CVE-2012-4968 | 2012-09-17 | Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe 2.3.x before 2.3.13... |
| CVE-2012-1899 | 2012-09-17 | Multiple cross-site scripting (XSS) vulnerabilities in webfolio/admin/users/edit in Webfolio CMS... |
| CVE-2012-2057 | 2012-09-17 | Cross-site request forgery (CSRF) vulnerability in the Ubercart Bulk Stock... |
| CVE-2012-2058 | 2012-09-17 | The Ubercart Payflow module for Drupal does not use a... |
| CVE-2012-2059 | 2012-09-17 | Cross-site scripting (XSS) vulnerability in the ticketyboo News Ticker module... |
| CVE-2012-2060 | 2012-09-17 | Cross-site scripting (XSS) vulnerability in the Admin tools module for... |
| CVE-2012-2061 | 2012-09-17 | Cross-site request forgery (CSRF) vulnerability in the Admin tools module... |
| CVE-2012-2062 | 2012-09-17 | Open redirect vulnerability in the Redirecting click bouncer module for... |
| CVE-2012-2056 | 2012-09-17 | Cross-site request forgery (CSRF) vulnerability in the Content Lock module... |
| CVE-2012-2993 | 2012-09-18 | Microsoft Windows Phone 7 does not verify the domain name... |
| CVE-2012-2994 | 2012-09-18 | The CoSoSys Endpoint Protector 4 appliance establishes an EPProot password... |
| CVE-2012-4969 | 2012-09-18 | Use-after-free vulnerability in the CMshtmlEd::Exec function in mshtml.dll in Microsoft... |
| CVE-2012-3028 | 2012-09-18 | Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC... |
| CVE-2012-3030 | 2012-09-18 | WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used... |
| CVE-2012-3031 | 2012-09-18 | Multiple cross-site scripting (XSS) vulnerabilities in WebNavigator in Siemens WinCC... |
| CVE-2012-3032 | 2012-09-18 | SQL injection vulnerability in WebNavigator in Siemens WinCC 7.0 SP3... |
| CVE-2012-3034 | 2012-09-18 | WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used... |
| CVE-2012-3524 | 2012-09-18 | libdbus 1.5.x and earlier, when used in setuid or other... |
| CVE-2012-3547 | 2012-09-18 | Stack-based buffer overflow in the cbtls_verify function in FreeRADIUS 2.1.10... |
| CVE-2012-4405 | 2012-09-18 | Multiple integer underflows in the icmLut_allocate function in International Color... |
| CVE-2012-4413 | 2012-09-18 | OpenStack Keystone 2012.1.3 does not invalidate existing tokens when granting... |
| CVE-2012-4425 | 2012-09-18 | libgio, when used in setuid or other privileged programs in... |
| CVE-2012-1183 | 2012-09-18 | Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt... |
| CVE-2012-1184 | 2012-09-18 | Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in... |
| CVE-2011-4941 | 2012-09-18 | Unspecified vulnerability in Piwik 1.2 through 1.4 allows remote attackers... |
| CVE-2012-1901 | 2012-09-18 | Multiple cross-site request forgery (CSRF) vulnerabilities in FlexCMS 3.2.1 and... |
| CVE-2012-1655 | 2012-09-18 | Unspecified vulnerability in the UC PayDutchGroup / WeDeal payment module... |
| CVE-2012-1656 | 2012-09-18 | SQL injection vulnerability in the Multisite Search module 6.x-2.2 for... |
| CVE-2012-1657 | 2012-09-18 | Cross-site scripting (XSS) vulnerability in block_class.module in the Block Class... |
| CVE-2012-1658 | 2012-09-18 | Cross-site scripting (XSS) vulnerability in the Read More Link module... |
| CVE-2012-1659 | 2012-09-18 | Cross-site scripting (XSS) vulnerability in the Node Recommendation module 6.x-1.x... |
| CVE-2012-1660 | 2012-09-18 | Multiple cross-site scripting (XSS) vulnerabilities in components/select.inc in the Webform... |
| CVE-2012-1654 | 2012-09-18 | Multiple cross-site scripting (XSS) vulnerabilities in the Data module 6.x-1.x... |
| CVE-2012-3258 | 2012-09-19 | Unspecified vulnerability in HP Operations Orchestration 9.0 before 9.03 allows... |
| CVE-2011-3827 | 2012-09-19 | The iCalendar component in gwwww1.dll in GroupWise Internet Agent (GWIA)... |
| CVE-2012-0271 | 2012-09-19 | Integer overflow in the WebConsole component in gwia.exe in GroupWise... |
| CVE-2012-0272 | 2012-09-19 | Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell... |
| CVE-2012-2578 | 2012-09-19 | Multiple cross-site scripting (XSS) vulnerabilities in SmarterMail 9.2 allow remote... |
| CVE-2012-2586 | 2012-09-19 | Multiple cross-site scripting (XSS) vulnerabilities in Mailtraq 2.17.3.3150 allow remote... |
| CVE-2012-4400 | 2012-09-19 | repository/repository_ajax.php in Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2... |
| CVE-2012-4401 | 2012-09-19 | Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote... |
| CVE-2012-4402 | 2012-09-19 | webservice/lib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and... |
| CVE-2012-4403 | 2012-09-19 | theme/yui_combo.php in Moodle 2.3.x before 2.3.2 does not properly construct... |
| CVE-2012-4407 | 2012-09-19 | lib/filelib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and... |
| CVE-2012-4408 | 2012-09-19 | course/reset.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and... |
| CVE-2012-1652 | 2012-09-19 | Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 6.x-3.x... |
| CVE-2012-1653 | 2012-09-19 | Cross-site scripting (XSS) vulnerability in the Taxonomy Views Integrator (TVI)... |
| CVE-2012-2105 | 2012-09-19 | Multiple SQL injection vulnerabilities in login.php in Timesheet Next Gen... |
| CVE-2012-2991 | 2012-09-19 | The PayPal (aka MODULE_PAYMENT_PAYPAL_STANDARD) module before 1.1 in osCommerce Online... |
| CVE-2012-3373 | 2012-09-19 | Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.21... |
| CVE-2012-4992 | 2012-09-19 | Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote... |
| CVE-2012-4994 | 2012-09-19 | SQL injection vulnerability in admin/admin.php in LimeSurvey before 1.91+ Build... |
| CVE-2012-4995 | 2012-09-19 | Cross-site scripting (XSS) vulnerability in admin/userrighthandling.php in LimeSurvey before 1.91+... |
| CVE-2012-4996 | 2012-09-19 | Multiple SQL injection vulnerabilities in RivetTracker 1.03 and earlier allow... |
| CVE-2012-4997 | 2012-09-19 | Directory traversal vulnerability in acp/index.php in AneCMS allows remote attackers... |
| CVE-2012-4998 | 2012-09-19 | Cross-site scripting (XSS) vulnerability in index.php in starCMS allows remote... |
| CVE-2012-4999 | 2012-09-19 | Mercury MR804 Router 8.0 3.8.1 Build 101220 Rel.53006nB allows remote... |
| CVE-2012-5000 | 2012-09-19 | SQL injection vulnerability in jokes/index.php in the Witze addon 0.9... |
| CVE-2012-5001 | 2012-09-19 | Multiple unspecified vulnerabilities in Hitachi JP1/Cm2/Network Node Manager i before... |
| CVE-2012-5002 | 2012-09-19 | Stack-based buffer overflow in SR10 FTP server (SR10.exe) 1.1.0.6 in... |
| CVE-2012-1651 | 2012-09-19 | Cross-site scripting (XSS) vulnerability in the Submenu Tree module before... |
| CVE-2012-4993 | 2012-09-19 | torrent_functions.php in RivetTracker 1.03 and earlier does not properly restrict... |
| CVE-2012-1640 | 2012-09-19 | Multiple cross-site scripting (XSS) vulnerabilities in the Managesite module 6.x-1.x... |
| CVE-2012-5003 | 2012-09-19 | nxapplet.jar in No Machine NX Web Companion 3.x and earlier... |
| CVE-2012-5004 | 2012-09-19 | Multiple cross-site request forgery (CSRF) vulnerabilities in Parallels H-Sphere 3.3... |
| CVE-2012-5005 | 2012-09-19 | Cross-site request forgery (CSRF) vulnerability in admin/admin_options.php in VR GPub... |
| CVE-2012-1638 | 2012-09-19 | SQL injection vulnerability in the Search Autocomplete module before 7.x-2.1... |
| CVE-2012-5006 | 2012-09-19 | Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in... |
| CVE-2012-0988 | 2012-09-20 | Multiple cross-site scripting (XSS) vulnerabilities in config/dmsDefaults.php in KnowledgeTree 3.7.0.2... |
| CVE-2012-1633 | 2012-09-20 | Cross-site request forgery (CSRF) vulnerability in the Password Policy module... |
| CVE-2012-1627 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in vud_term.module in the Vote Up/Down... |
| CVE-2012-1632 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in password_policy.admin.inc in the Password Policy... |
| CVE-2012-1626 | 2012-09-20 | SQL injection vulnerability in the conversion form for Events in... |
| CVE-2012-1628 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in the SuperCron module for Drupal... |
| CVE-2012-1629 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in the Taxotouch module for Drupal... |
| CVE-2012-1630 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in the Taxonomy Navigator module for... |
| CVE-2012-1631 | 2012-09-20 | Cross-site request forgery (CSRF) vulnerability in the Admin:hover module for... |
| CVE-2012-1625 | 2012-09-20 | Eval injection vulnerability in the fillpdf_form_export_decode function in fillpdf.admin.inc in... |
| CVE-2012-5007 | 2012-09-20 | The Fill PDF module 7.x-1.x before 7.x-1.2 for Drupal allows... |
| CVE-2011-5177 | 2012-09-20 | Multiple cross-site scripting (XSS) vulnerabilities in admin/controller.php in eSyndiCat Pro... |
| CVE-2011-5179 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in skysa-official/skysa.php in Skysa App Bar... |
| CVE-2011-5180 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in wp-1pluginjquery.php in the ZooEffect plugin... |
| CVE-2011-5181 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in clickdesk.php in ClickDesk Live Support... |
| CVE-2011-5182 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in lanoba-social-plugin/index.php in the Lanoba Social... |
| CVE-2011-5184 | 2012-09-20 | Multiple cross-site scripting (XSS) vulnerabilities in HP Network Node Manager... |
| CVE-2011-5187 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in the Support Ticketing System module... |
| CVE-2011-5188 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in the Support Timer module 6.x-1.x... |
| CVE-2011-5189 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in the Webform Validation module 6.x-1.x... |
| CVE-2011-5190 | 2012-09-20 | Multiple cross-site scripting (XSS) vulnerabilities in Social Book Facebook Clone... |
| CVE-2011-5178 | 2012-09-20 | Multiple cross-site scripting (XSS) vulnerabilities in netmri/config/userAdmin/login.tdf in Infoblox NetMRI... |
| CVE-2011-5183 | 2012-09-20 | Multiple SQL injection vulnerabilities in OrderSys 1.6.4 and earlier allow... |
| CVE-2011-5185 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in video_comments.php in Online Subtitles Workshop... |
| CVE-2011-5186 | 2012-09-20 | Cross-site scripting (XSS) vulnerability in jbshop.php in the jbShop plugin... |
| CVE-2012-3713 | 2012-09-20 | Apple Safari before 6.0.1 does not properly handle the Quarantine... |
| CVE-2012-3714 | 2012-09-20 | The Form Autofill feature in Apple Safari before 6.0.1 does... |
| CVE-2012-3715 | 2012-09-20 | Apple Safari before 6.0.1 makes http requests for https URIs... |
| CVE-2012-3716 | 2012-09-20 | CoreText in Apple Mac OS X 10.7.x before 10.7.5 allows... |