Search
Total
21119 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2012-3593 | 1 Apple | 1 Safari | 2012-09-22 | 9.3 HIGH | N/A |
| WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
| CVE-2012-3592 | 1 Apple | 1 Safari | 2012-09-22 | 9.3 HIGH | N/A |
| WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
| CVE-2012-3591 | 1 Apple | 1 Safari | 2012-09-22 | 9.3 HIGH | N/A |
| WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
| CVE-2012-3590 | 1 Apple | 1 Safari | 2012-09-22 | 8.8 HIGH | N/A |
| WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
| CVE-2012-3589 | 1 Apple | 1 Safari | 2012-09-22 | 9.3 HIGH | N/A |
| WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
| CVE-2012-3611 | 1 Apple | 1 Safari | 2012-09-22 | 9.3 HIGH | N/A |
| WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
| CVE-2012-1520 | 1 Apple | 1 Safari | 2012-09-22 | 9.3 HIGH | N/A |
| WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
| CVE-2011-5133 | 1 Mybb | 1 Mybb | 2012-09-13 | 10.0 HIGH | N/A |
| Unspecified vulnerability in MyBB before 1.6.5 has unknown impact and attack vectors, related to an "unparsed user avatar in the buddy list." | |||||
| CVE-2012-0821 | 1 Joomla | 1 Joomla\! | 2012-09-13 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Joomla! 1.6.x and 1.7.x before 1.7.4 allows remote attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2012-0819. | |||||
| CVE-2012-0836 | 1 Joomla | 1 Joomla\! | 2012-09-13 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Joomla! 1.7.x before 1.7.5 allows attackers to read the error log via unknown vectors. | |||||
| CVE-2012-4885 | 1 Mediawiki | 1 Mediawiki | 2012-09-10 | 5.0 MEDIUM | N/A |
| The wikitext parser in MediaWiki 1.17.x before 1.17.3 and 1.18.x before 1.18.2 allows remote attackers to cause a denial of service (infinite loop) via certain input, as demonstrated by the padleft function. | |||||
| CVE-2011-4449 | 1 Wikkawiki | 1 Wikkawiki | 2012-09-07 | 6.8 MEDIUM | N/A |
| actions/files/files.php in WikkaWiki 1.3.1 and 1.3.2, when INTRANET_MODE is enabled, supports file uploads for file extensions that are typically absent from an Apache HTTP Server TypesConfig file, which makes it easier for remote attackers to execute arbitrary PHP code by placing this code in a file whose name has multiple extensions, as demonstrated by a (1) .mm or (2) .vpp file. | |||||
| CVE-2012-0819 | 1 Joomla | 1 Joomla\! | 2012-09-07 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Joomla! 1.6.x and 1.7.x before 1.7.4 allows remote attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2012-0821. | |||||
| CVE-2012-0835 | 1 Joomla | 1 Joomla\! | 2012-09-07 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Joomla! 1.7.x before 1.7.5 and 2.5.x before 2.5.1 allows attackers to obtain sensitive information via unknown vectors related to "administrator." | |||||
| CVE-2012-4874 | 2 Awpcp, Wordpress | 2 Another Wordpress Classifieds Plugin, Wordpress | 2012-09-07 | 10.0 HIGH | N/A |
| Unspecified vulnerability in the Another WordPress Classifieds Plugin before 2.0 for WordPress has unknown impact and attack vectors related to "image uploads." | |||||
| CVE-2011-4451 | 1 Wikkawiki | 1 Wikkawiki | 2012-09-06 | 4.3 MEDIUM | N/A |
| ** DISPUTED ** libs/Wakka.class.php in WikkaWiki 1.3.1 and 1.3.2, when the spam_logging option is enabled, allows remote attackers to write arbitrary PHP code to the spamlog_path file via the User-Agent HTTP header in an addcomment request. NOTE: the vendor disputes this issue because the rendering of the spamlog_path file never uses the PHP interpreter. | |||||
| CVE-2012-4742 | 1 Packetfence | 1 Packetfence | 2012-09-03 | 7.5 HIGH | N/A |
| The web_node_register function in web.pm in PacketFence before 3.0.2 might allow remote attackers to execute arbitrary code via unspecified vectors. | |||||
| CVE-2009-5125 | 1 Comodo | 1 Comodo Internet Security | 2012-08-27 | 4.3 MEDIUM | N/A |
| Comodo Internet Security before 3.9.95478.509 allows remote attackers to bypass malware detection in an RAR archive via an unspecified manipulation of the archive file format. | |||||
| CVE-2010-5186 | 1 Comodo | 1 Comodo Internet Security | 2012-08-27 | 4.3 MEDIUM | N/A |
| The Antivirus component in Comodo Internet Security before 4.1.150349.920 allows remote attackers to cause a denial of service (application crash) via a crafted file. | |||||
| CVE-2009-5126 | 1 Comodo | 1 Comodo Internet Security | 2012-08-27 | 4.3 MEDIUM | N/A |
| The Antivirus component in Comodo Internet Security before 3.8.65951.477 allows remote attackers to cause a denial of service (application crash) via a crafted file. | |||||
| CVE-2011-5120 | 1 Comodo | 1 Comodo Internet Security | 2012-08-27 | 4.3 MEDIUM | N/A |
| The Antivirus component in Comodo Internet Security before 5.4.189822.1355 allows remote attackers to cause a denial of service (application crash) via a crafted .PST file. | |||||
| CVE-2009-5127 | 1 Comodo | 1 Comodo Internet Security | 2012-08-27 | 4.3 MEDIUM | N/A |
| The Antivirus component in Comodo Internet Security before 3.8.64739.471 allows remote attackers to cause a denial of service (application crash) via a crafted file. | |||||
| CVE-2012-4598 | 1 Mcafee | 2 Epo Mcafee Virtual Technician, Mcafee Virtual Technician | 2012-08-22 | 9.3 HIGH | N/A |
| An unspecified ActiveX control in McAfee Virtual Technician (MVT) before 6.4, and ePO-MVT, allows remote attackers to execute arbitrary code or cause a denial of service (Internet Explorer crash) via a crafted web site. | |||||
| CVE-2012-4343 | 1 Menalto | 1 Gallery | 2012-08-16 | 7.5 HIGH | N/A |
| Multiple unspecified vulnerabilities in Gallery 3 before 3.0.4 allow attackers to execute arbitrary PHP code via unknown vectors. | |||||
| CVE-2012-4331 | 1 Spip | 1 Spip | 2012-08-15 | 10.0 HIGH | N/A |
| Multiple unspecified vulnerabilities in SPIP before 1.9.2.o, 2.0.x before 2.0.18, and 2.1.x before 2.1.13 have unknown impact and attack vectors that are not related to cross-site scripting (XSS), different vulnerabilities than CVE-2012-2151. | |||||
| CVE-2012-4274 | 1 Hitachi | 2 Cobol Gui Option, Cobol Gui Option Server | 2012-08-14 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Hitachi Cobol GUI Option 06-00, 06-01 through 06-01-/A, 07-00, 07-01 before 07-01-/B, and 08-00 before 08-00-/B and Cobol GUI Option Server 07-00, 07-01 before 07-01-/B, and 08-00 before 08-00-/B allows remote attackers to execute arbitrary code via unknown attack vectors. | |||||
| CVE-2012-4276 | 1 Hitachi | 1 It Operations Director | 2012-08-14 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Hitachi IT Operations Director 02-50-01 through 02-50-07, 03-00 before 03-00-08 allows attackers to cause a denial of service via unknown attack vectors. | |||||
| CVE-2012-0134 | 1 Hp | 1 Openvms | 2012-08-14 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in HP OpenVMS 7.3-2 on the Alpha platform, 8.3 and 8.4 on the Alpha and IA64 platforms, and 8.3-1h1 on the IA64 platform allows local users to cause a denial of service via unknown vectors. | |||||
| CVE-2012-3559 | 2 Apple, Opera | 2 Mac Os X, Opera Browser | 2012-08-09 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Opera before 12.00 on Mac OS X has unknown impact and attack vectors, related to a "moderate severity issue." | |||||
| CVE-2012-4145 | 4 Apple, Linux, Microsoft and 1 more | 4 Mac Os X, Linux Kernel, Windows and 1 more | 2012-08-07 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, has unknown impact and attack vectors, related to a "low severity issue." | |||||
| CVE-2012-1350 | 1 Cisco | 19 Aironet 1040, Aironet 1140, Aironet 1260 and 16 more | 2012-08-06 | 7.8 HIGH | N/A |
| Cisco IOS 12.3 and 12.4 on Aironet access points allows remote attackers to cause a denial of service (radio-interface input-queue hang) via IAPP 0x3281 packets, aka Bug ID CSCtc12426. | |||||
| CVE-2011-0837 | 1 Oracle | 1 Supply Chain Products Suite | 2012-08-03 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security. | |||||
| CVE-2011-0839 | 1 Sun | 1 Sunos | 2012-08-03 | 3.7 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect availability, related to LOFS. | |||||
| CVE-2011-0836 | 1 Oracle | 6 Enterpriseone Tools, Jd Edwards Enterpriseone, Jd Edwards Enterpriseone Ep and 3 more | 2012-08-03 | 3.5 LOW | N/A |
| Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC. | |||||
| CVE-2011-0834 | 1 Oracle | 1 Siebel Crm | 2012-08-03 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel CRM Core component in Oracle Siebel CRM 8.0.0 and 8.1.1 allows remote attackers to affect integrity via unknown vectors related to Globalization - Automotive. | |||||
| CVE-2011-0833 | 1 Oracle | 1 Siebel Crm | 2012-08-03 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel CRM Core component in Oracle Siebel CRM 7.8.2, 8.0.0, and 8.1.1 allows remote attackers to affect integrity, related to UIF Client. | |||||
| CVE-2011-0829 | 1 Sun | 1 Sunos | 2012-08-03 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability, related to Kernel/SPARC. | |||||
| CVE-2011-0828 | 1 Oracle | 1 Peoplesoft Enterprise | 2012-08-03 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13 allows remote attackers to affect integrity via unknown vectors related to Application Portal. | |||||
| CVE-2011-0827 | 1 Oracle | 2 Peoplesoft And Jdedwards Product Suite, Peoplesoft Enterprise | 2012-08-03 | 3.5 LOW | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise component in Oracle PeopleSoft Products 8.50 GA through 8.50.17 and 8.51 GA through 8.51.07 allows remote authenticated users to affect integrity via unknown vectors related to PeopleTools. | |||||
| CVE-2011-0826 | 1 Oracle | 1 Peoplesoft Enterprise | 2012-08-03 | 3.5 LOW | N/A |
| Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.8 Bundle #13, 8.9 Bundle #7, 9.0 Bundle #7, and 9.1 Bundle #4 allows remote authenticated users to affect integrity via unknown vectors related to Application Portal. | |||||
| CVE-2011-0825 | 1 Oracle | 6 Enterpriseone Tools, Jd Edwards Enterpriseone, Jd Edwards Enterpriseone Ep and 3 more | 2012-08-03 | 6.8 MEDIUM | N/A |
| Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote attackers to affect confidentiality, integrity, and availability, related to Enterprise Infrastructure SEC. | |||||
| CVE-2011-0824 | 1 Oracle | 6 Enterpriseone Tools, Jd Edwards Enterpriseone, Jd Edwards Enterpriseone Ep and 3 more | 2012-08-03 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote attackers to affect confidentiality and integrity, related to Enterprise Infrastructure SEC. | |||||
| CVE-2011-0821 | 1 Sun | 1 Sunos | 2012-08-03 | 3.0 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to uucp. | |||||
| CVE-2011-0820 | 1 Sun | 1 Sunos | 2012-08-03 | 5.4 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 10, and 11 Express allows remote attackers to affect availability via unknown vectors related to Kernel. | |||||
| CVE-2011-0812 | 1 Sun | 1 Sunos | 2012-08-03 | 3.7 LOW | N/A |
| Unspecified vulnerability in the Solaris component in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel. | |||||
| CVE-2011-0854 | 1 Oracle | 1 Peoplesoft Enterprise Hrms | 2012-08-02 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.1 Bundle #5 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to ePerformance. | |||||
| CVE-2011-0847 | 1 Oracle | 1 Sun Products Suite | 2012-08-02 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the OpenSSO Enterprise and Sun Java System Access Manager components in Oracle Sun Products Suite 7.1 and 8.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Authentication. | |||||
| CVE-2011-0846 | 1 Oracle | 1 Sun Java System Access Manager Policy Agent | 2012-08-02 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Sun Java System Access Manager Policy Agent 2.2 allows remote attackers to affect availability via unknown vectors related to Web Proxy Agent. | |||||
| CVE-2011-0857 | 1 Oracle | 1 Peoplesoft Enterprise Hrms | 2012-08-02 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Bundle #15 and 9.1 Bundle #5 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Pension Administration. | |||||
| CVE-2011-0856 | 1 Oracle | 1 Peoplesoft Enterprise | 2012-08-02 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in Oracle PeopleSoft Enterprise 8.49 GA through 8.49.30, 8.50 GA through 8.50.17, and 8.51 GA through 8.51.07 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||