| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2012-6007 | Cross-site scripting (XSS) vulnerability in screens/base/web_auth_custom.html on Cisco Wireless LAN ... | E | |
| CVE-2012-6026 | The HTTP Profiler on the Cisco Aironet Access Point with software 15.2 and earlier does not properly... | | |
| CVE-2012-6029 | Multiple cross-site scripting (XSS) vulnerabilities in the web-authentication function on the Cisco ... | | |
| CVE-2012-6030 | The do_tmem_op function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local guest... | | |
| CVE-2012-6031 | The do_tmem_get function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local gues... | | |
| CVE-2012-6032 | Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_client functions in t... | | |
| CVE-2012-6033 | The do_tmem_control function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 does not pro... | | |
| CVE-2012-6034 | The (1) tmemc_save_get_next_page and (2) tmemc_save_get_next_inv functions and the (3) TMEMC_SAVE_GE... | | |
| CVE-2012-6035 | The do_tmem_destroy_pool function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 does no... | | |
| CVE-2012-6036 | The (1) memc_save_get_next_page, (2) tmemc_restore_put_page and (3) tmemc_restore_flush_page functio... | | |
| CVE-2012-6037 | Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.5 and 1.5.x before 1.... | S | |
| CVE-2012-6038 | admin/core/admin_func.php in razorCMS before 1.2.1 does not properly restrict access to certain admi... | E S | |
| CVE-2012-6039 | SQL injection vulnerability in view_comments.php in YABSoft Advanced Image Hosting (AIH) Script, pos... | E | |
| CVE-2012-6040 | Cross-site scripting (XSS) vulnerability in users.php in File King Advanced File Management 1.4 allo... | E | |
| CVE-2012-6041 | Double free vulnerability in GreenBrowser before 6.0.1002, when the keyword search bar (F6) is activ... | E | |
| CVE-2012-6042 | GPSMapEdit 1.1.73.2 allows user-assisted remote attackers to cause a denial of service (crash) via a... | E | |
| CVE-2012-6043 | Cross-site scripting (XSS) vulnerability in downloads.php in PHP-Fusion 7.02.04 allows remote attack... | E | |
| CVE-2012-6044 | M-Player 0.4 allows remote attackers to cause a denial of service (crash) via a crafted MP3 file.... | E | |
| CVE-2012-6045 | Cross-site scripting (XSS) vulnerability in gb/user/index.php in Ramui Forum, possibly 1.0 Beta, all... | E | |
| CVE-2012-6046 | Static code injection vulnerability in admin/banners.php in PHP Enter allows remote attackers to inj... | E | |
| CVE-2012-6047 | Cross-site request forgery (CSRF) vulnerability in X7 Chat 2.0.5.1 and earlier allows remote attacke... | E | |
| CVE-2012-6048 | Guitar Pro 6.1.1 r10791 allows remote attackers to cause a denial of service (crash) via a long stri... | E | |
| CVE-2012-6049 | Open Solution Quick.Cart 5.0 allows remote attackers to obtain sensitive information via (1) a long ... | | |
| CVE-2012-6050 | The winbox service in MikroTik RouterOS 5.15 and earlier allows remote attackers to cause a denial o... | E | |
| CVE-2012-6051 | Google CityHash computes hash values without properly restricting the ability to trigger hash collis... | | |
| CVE-2012-6052 | Wireshark 1.8.x before 1.8.4 allows remote attackers to obtain sensitive hostname information by rea... | | |
| CVE-2012-6053 | epan/dissectors/packet-usb.c in the USB dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before ... | S | |
| CVE-2012-6054 | The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in the sFlow dissector... | S | |
| CVE-2012-6055 | epan/dissectors/packet-3g-a11.c in the 3GPP2 A11 dissector in Wireshark 1.8.x before 1.8.4 allows re... | E S | |
| CVE-2012-6056 | Integer overflow in the dissect_sack_chunk function in epan/dissectors/packet-sctp.c in the SCTP dis... | S | |
| CVE-2012-6057 | The dissect_eigrp_metric_comm function in epan/dissectors/packet-eigrp.c in the EIGRP dissector in W... | S | |
| CVE-2012-6058 | Integer overflow in the dissect_icmpv6 function in epan/dissectors/packet-icmpv6.c in the ICMPv6 dis... | E | |
| CVE-2012-6059 | The dissect_isakmp function in epan/dissectors/packet-isakmp.c in the ISAKMP dissector in Wireshark ... | E | |
| CVE-2012-6060 | Integer overflow in the dissect_iscsi_pdu function in epan/dissectors/packet-iscsi.c in the iSCSI di... | E | |
| CVE-2012-6061 | The dissect_wtp_common function in epan/dissectors/packet-wtp.c in the WTP dissector in Wireshark 1.... | E | |
| CVE-2012-6062 | The dissect_rtcp_app function in epan/dissectors/packet-rtcp.c in the RTCP dissector in Wireshark 1.... | E S | |
| CVE-2012-6063 | Double free vulnerability in the sftp_mkdir function in sftp.c in libssh before 0.5.3 allows remote ... | | |
| CVE-2012-6064 | Directory traversal vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMS... | | |
| CVE-2012-6065 | The OM Maximenu module 6.x-1.43 and earlier for Drupal, when the "Title has PHP" option is enabled, ... | S | |
| CVE-2012-6066 | freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a crafte... | | |
| CVE-2012-6067 | freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a craft... | | |
| CVE-2012-6068 | The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which... | | |
| CVE-2012-6069 | Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x a... | | |
| CVE-2012-6070 | Falconpl before 0.9.6.9-git20120606 misuses the libcurl API which may allow remote attackers to inte... | | |
| CVE-2012-6071 | nuSOAP before 0.7.3-5 does not properly check the hostname of a cert.... | | |
| CVE-2012-6072 | CRLF injection vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterp... | | |
| CVE-2012-6073 | Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterpr... | | |
| CVE-2012-6074 | Cross-site scripting (XSS) vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Je... | | |
| CVE-2012-6075 | Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-... | S | |
| CVE-2012-6076 | Inkscape before 0.48.4 reads .eps files from /tmp instead of the current directory, which might caus... | | |
| CVE-2012-6077 | W3 Total Cache before 0.9.2.5 allows remote attackers to retrieve password hash information due to i... | | |
| CVE-2012-6078 | W3 Total Cache before 0.9.2.5 generates hash keys insecurely which allows remote attackers to predic... | E | |
| CVE-2012-6079 | W3 Total Cache before 0.9.2.5 exposes sensitive cached database information which allows remote atta... | | |
| CVE-2012-6080 | Directory traversal vulnerability in the _do_attachment_move function in the AttachFile action (acti... | S | |
| CVE-2012-6081 | Multiple unrestricted file upload vulnerabilities in the (1) twikidraw (action/twikidraw.py) and (2)... | E S | |
| CVE-2012-6082 | Cross-site scripting (XSS) vulnerability in the rsslink function in theme/__init__.py in MoinMoin 1.... | E S | |
| CVE-2012-6083 | Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet.... | | |
| CVE-2012-6084 | modules/m_capab.c in (1) ircd-ratbox before 3.0.8 and (2) Charybdis before 3.4.2 does not properly s... | S | |
| CVE-2012-6085 | The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 and 2.0.x through 2.0.19, when ... | E | |
| CVE-2012-6086 | libs/zbxmedia/eztexting.c in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.8rc1, and 2.1.x before ... | | |
| CVE-2012-6087 | repository/s3/S3.php in the Amazon S3 library in Moodle through 2.2.11, 2.3.x before 2.3.9, 2.4.x be... | S | |
| CVE-2012-6088 | The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code i... | S | |
| CVE-2012-6089 | Multiple stack-based buffer overflows in the canoniseFileName function in os/pl-os.c in SWI-Prolog b... | S | |
| CVE-2012-6090 | Multiple stack-based buffer overflows in the expand function in os/pl-glob.c in SWI-Prolog before 6.... | S | |
| CVE-2012-6091 | Zend_XmlRpc Class in Magento before 1.7.0.2 contains an information disclosure vulnerability.... | | |
| CVE-2012-6092 | Multiple cross-site scripting (XSS) vulnerabilities in the web demos in Apache ActiveMQ before 5.8.0... | | |
| CVE-2012-6093 | The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when ... | | |
| CVE-2012-6094 | cups (Common Unix Printing System) 'Listen localhost:631' option not honored correctly which could p... | | |
| CVE-2012-6095 | ProFTPD before 1.3.5rc1, when using the UserOwner directive, allows local users to modify the owners... | | |
| CVE-2012-6096 | Multiple stack-based buffer overflows in the get_history function in history.cgi in Nagios Core befo... | E | |
| CVE-2012-6097 | File descriptor leak in cronie 1.4.8, when running in certain environments, might allow local users ... | | |
| CVE-2012-6098 | grade/edit/outcome/edit_form.php in Moodle 1.9.x through 1.9.19, 2.1.x before 2.1.10, 2.2.x before 2... | | |
| CVE-2012-6099 | The moodle1 backup converter in backup/converter/moodle1/lib.php in Moodle 2.1.x before 2.1.10, 2.2.... | | |
| CVE-2012-6100 | report/outline/index.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 do... | | |
| CVE-2012-6101 | Multiple open redirect vulnerabilities in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x b... | | |
| CVE-2012-6102 | lib.php in the Submission comments plugin in the Assignment module in Moodle 2.3.x before 2.3.4 and ... | | |
| CVE-2012-6103 | Multiple cross-site request forgery (CSRF) vulnerabilities in user/messageselect.php in the messagin... | | |
| CVE-2012-6104 | blog/rsslib.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 allows remo... | | |
| CVE-2012-6105 | blog/rsslib.php in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x bef... | | |
| CVE-2012-6106 | calendar/managesubscriptions.php in the Manage Subscriptions implementation in Moodle 2.4.x before 2... | | |
| CVE-2012-6107 | Apache Axis2/C does not verify that the server hostname matches a domain name in the subject's Commo... | | |
| CVE-2012-6108 | HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions for /var/log/hp ... | | |
| CVE-2012-6109 | lib/rack/multipart.rb in Rack before 1.1.4, 1.2.x before 1.2.6, 1.3.x before 1.3.7, and 1.4.x before... | | |
| CVE-2012-6110 | bcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when... | E S | |
| CVE-2012-6111 | gnome-keyring does not discard stored secrets when using gnome_keyring_lock_all_sync function... | | |
| CVE-2012-6112 | classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for T... | | |
| CVE-2012-6113 | The openssl_encrypt function in ext/openssl/openssl.c in PHP 5.3.9 through 5.3.13 does not initializ... | | |
| CVE-2012-6114 | The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a ... | | |
| CVE-2012-6115 | The domain management tool (rhevm-manage-domains) in Red Hat Enterprise Virtualization Manager (RHEV... | | |
| CVE-2012-6116 | modules/certs/manifests/config.pp in katello-configure before 1.3.3.pulpv2 in Katello uses weak perm... | | |
| CVE-2012-6117 | Aeolus Configuration Server, as used in Red Hat CloudForms Cloud Engine before 1.1.2, uses world-rea... | E | |
| CVE-2012-6118 | The Administer tab in Aeolus Conductor allows remote authenticated users to bypass intended quota re... | E | |
| CVE-2012-6119 | Candlepin before 0.7.24, as used in Red Hat Subscription Asset Manager before 1.2.1, does not proper... | | |
| CVE-2012-6120 | Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory with world-readable permiss... | | |
| CVE-2012-6121 | Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 0.8.5 allows remote attackers t... | | |
| CVE-2012-6122 | Buffer overflow in the thread scheduler in Chicken before 4.8.0.1 allows attackers to cause a denial... | S | |
| CVE-2012-6123 | Chicken before 4.8.0 does not properly handle NUL bytes in certain strings, which allows an attacker... | | |
| CVE-2012-6124 | A casting error in Chicken before 4.8.0 on 64-bit platform caused the random number generator to ret... | S | |
| CVE-2012-6125 | Chicken before 4.8.0 is susceptible to algorithmic complexity attacks related to hash table collisio... | S | |
| CVE-2012-6126 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-4525, CVE-2012-4526. Reaso... | R | |
| CVE-2012-6127 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This was originally re... | R | |
| CVE-2012-6128 | Multiple stack-based buffer overflows in http.c in OpenConnect before 4.08 allow remote VPN gateways... | | |
| CVE-2012-6129 | Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly o... | E S | |
| CVE-2012-6130 | Cross-site scripting (XSS) vulnerability in the history display in Roundup before 1.4.20 allows remo... | S | |
| CVE-2012-6131 | Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.20 allows remote att... | S | |
| CVE-2012-6132 | Cross-site scripting (XSS) vulnerability in Roundup before 1.4.20 allows remote attackers to inject ... | | |
| CVE-2012-6133 | Multiple cross-site scripting (XSS) vulnerabilities in Roundup before 1.4.20 allow remote attackers ... | E | |
| CVE-2012-6134 | Cross-site request forgery (CSRF) vulnerability in the omniauth-oauth2 gem 1.1.1 and earlier for Rub... | S | |
| CVE-2012-6135 | RubyGems passenger 4.0.0 betas 1 and 2 allows remote attackers to delete arbitrary files during the ... | S | |
| CVE-2012-6136 | tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitra... | | |
| CVE-2012-6137 | rhn-migrate-classic-to-rhsm tool in Red Hat subscription-manager does not verify the Red Hat Network... | | |
| CVE-2012-6138 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-6536, CVE-2012-6537, CVE-20... | R | |
| CVE-2012-6139 | libxslt before 1.1.28 allows remote attackers to cause a denial of service (NULL pointer dereference... | E S | |
| CVE-2012-6140 | pam_google_authenticator.c in the PAM module in Google Authenticator before 1.0 requires user-readab... | E | |
| CVE-2012-6141 | The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw functio... | | |
| CVE-2012-6142 | Session::Cookie in the HTML::EP module 0.2011 for Perl does not properly use the Storable::thaw func... | | |
| CVE-2012-6143 | Spoon::Cookie in the Spoon module 0.24 for Perl does not properly use the Storable::thaw function, w... | | |
| CVE-2012-6144 | SQL injection vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before... | | |
| CVE-2012-6145 | Cross-site scripting (XSS) vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21,... | | |
| CVE-2012-6146 | The Backend History Module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6... | | |
| CVE-2012-6147 | Cross-site scripting (XSS) vulnerability in the tree render API (TCA-Tree) in the Backend API in TYP... | | |
| CVE-2012-6148 | Cross-site scripting (XSS) vulnerability in the function menu API in TYPO3 4.5.x before 4.5.21, 4.6.... | | |
| CVE-2012-6149 | Multiple cross-site scripting (XSS) vulnerabilities in systems/sdc/notes.jsp in Spacewalk and Red Ha... | E S | |
| CVE-2012-6150 | The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 h... | E S | |
| CVE-2012-6151 | Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT reques... | E | |
| CVE-2012-6152 | The Yahoo! protocol plugin in libpurple in Pidgin before 2.10.8 does not properly validate UTF-8 dat... | | |
| CVE-2012-6153 | http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly veri... | | |
| CVE-2012-6154 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2012-6155 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2012-6156 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2012-6157 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2012-6158 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6159 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6160 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6161 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6162 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6163 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6164 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6165 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6166 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6167 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6168 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6169 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6170 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6171 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6172 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6173 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6174 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6175 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6176 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6177 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6178 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6179 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6180 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6181 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6182 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6183 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6184 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6185 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6186 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6187 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6188 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6189 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6190 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6191 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6192 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6193 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6194 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6195 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6196 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6197 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6198 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6199 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6200 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6201 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6202 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6203 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6204 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6205 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6206 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6207 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6208 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6209 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6210 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6211 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6212 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6213 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6214 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6215 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6216 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6217 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6218 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6219 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6220 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6221 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6222 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6223 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6224 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6225 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6226 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6227 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6228 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6229 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6230 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6231 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6232 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6233 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6234 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6235 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6236 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6237 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6238 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6239 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6240 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6241 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6242 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6243 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6244 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6245 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6246 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6247 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6248 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6249 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6250 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6251 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6252 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6253 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6254 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6255 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6256 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6257 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6258 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6259 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6260 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6261 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6262 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6263 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6264 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6265 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6266 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6267 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6268 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6269 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6270 | Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of a Shock... | | |
| CVE-2012-6271 | Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of arbitra... | | |
| CVE-2012-6272 | Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1,... | | |
| CVE-2012-6273 | SQL injection vulnerability in BigAntSoft BigAnt IM Message Server allows remote attackers to execut... | | |
| CVE-2012-6274 | BigAntSoft BigAnt IM Message Server does not require authentication for file uploading, which allows... | | |
| CVE-2012-6275 | Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remo... | | |
| CVE-2012-6276 | Directory traversal vulnerability in the web-based management interface on the TP-LINK TL-WR841N rou... | | |
| CVE-2012-6277 | Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail... | | |
| CVE-2012-6278 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6279 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6280 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6281 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6282 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6283 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6284 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6285 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6286 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6287 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6288 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6289 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6290 | SQL injection vulnerability in ImageCMS before 4.2 allows remote authenticated administrators to exe... | E | |
| CVE-2012-6297 | Command Injection vulnerability exists via a CSRF in DD-WRT 24-sp2 from specially crafted configurat... | | |
| CVE-2012-6298 | Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA a... | | |
| CVE-2012-6299 | Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA a... | | |
| CVE-2012-6301 | The Browser application in Android 4.0.3 allows remote attackers to cause a denial of service (appli... | E | |
| CVE-2012-6302 | Soapbox through 0.3.1: Sandbox bypass - runs a second instance of Soapbox within a sandboxed Soapbox... | | |
| CVE-2012-6303 | Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound ... | E | |
| CVE-2012-6306 | A vulnerability exists in HCView (aka Hardcoreview) 1.4 due to a write access violation with a GIF f... | | |
| CVE-2012-6307 | A vulnerability exists in JPEGsnoop 1.5.2 due to an unspecified issue in JPEG file handling, which c... | E | |
| CVE-2012-6309 | A vulnerability exists in Arctic Torrent 1.4 via unspecified vectors in .torrent file handling, whic... | | |
| CVE-2012-6312 | Cross-site scripting (XSS) vulnerability in the Video Lead Form plugin for WordPress allows remote a... | | |
| CVE-2012-6313 | simple-gmail-login.php in the Simple Gmail Login plugin before 1.1.4 for WordPress allows remote att... | | |
| CVE-2012-6314 | Citrix XenDesktop Virtual Desktop Agent (VDA) 5.6.x before 5.6.200, when making changes to the serve... | | |
| CVE-2012-6315 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-0209. Reason: This candida... | R | |
| CVE-2012-6316 | Multiple cross-site scripting (XSS) vulnerabilities in the TP-LINK TL-WR841N router with firmware 3.... | | |
| CVE-2012-6324 | Directory traversal vulnerability in VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 and ... | | |
| CVE-2012-6325 | VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 does not properly parse XML documents, wh... | | |
| CVE-2012-6326 | VMware vCenter Server 4.1 before Update 3 and 5.0 before Update 2, and vCSA 5.0 before Update 2, all... | S | |
| CVE-2012-6327 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6328 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6329 | The _compile function in Maketext.pm in the Locale::Maketext implementation in Perl before 5.17.7 do... | S | |
| CVE-2012-6330 | The localization functionality in TWiki before 5.1.3, and Foswiki 1.0.x through 1.0.10 and 1.1.x thr... | | |
| CVE-2012-6333 | Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM guest OS administrators to ca... | | |
| CVE-2012-6334 | The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices does ... | | |
| CVE-2012-6335 | The Anti-theft service in AVG AntiVirus for Android allows physically proximate attackers to provide... | | |
| CVE-2012-6336 | The Missing Device feature in Lookout allows physically proximate attackers to provide arbitrary loc... | | |
| CVE-2012-6337 | The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows... | | |
| CVE-2012-6339 | Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cerberus ... | E | |
| CVE-2012-6340 | An Authentication vulnerability exists in NETGEAR WGR614 v7 and v9 due to a hardcoded credential use... | | |
| CVE-2012-6341 | An Information Disclosure vulnerability exists in the my config file in NEtGEAR WGR614 v7 and v9, wh... | | |
| CVE-2012-6342 | Cross-site request forgery (CSRF) vulnerability in logout.action in Atlassian Confluence 3.4.6 allow... | E | |
| CVE-2012-6344 | Novell ZENworks Configuration Management before 11.2.4 allows XSS.... | | |
| CVE-2012-6345 | Novell ZENworks Configuration Management before 11.2.4 allows obtaining sensitive trace information.... | | |
| CVE-2012-6346 | Multiple cross-site scripting (XSS) vulnerabilities in FortiWeb before 4.4.4 allow remote attackers ... | | |
| CVE-2012-6347 | Multiple cross-site scripting (XSS) vulnerabilities in Java number format exception handling in Fort... | E | |
| CVE-2012-6348 | Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows local ... | | |
| CVE-2012-6349 | Buffer overflow in the .mdb parser in Autonomy KeyView IDOL, as used in IBM Notes 8.5.x before 8.5.3... | | |
| CVE-2012-6350 | Cross-site scripting (XSS) vulnerability in the Web component in IBM Cognos TM1 before 9.5.2 FP3 and... | | |
| CVE-2012-6352 | The Session Manager in IBM Sterling Connect:Direct through 4.1.0.3 on UNIX allows remote attackers t... | | |
| CVE-2012-6354 | The management GUI on the IBM SAN Volume Controller and Storwize V7000 6.x before 6.4.1.3 allows rem... | | |
| CVE-2012-6355 | IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tiv... | | |
| CVE-2012-6356 | IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk... | | |
| CVE-2012-6357 | IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk... | | |
| CVE-2012-6359 | IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.11, 6.2.1 before 6.2.1.3, and 6.2.2 ... | | |
| CVE-2012-6360 | Cross-site scripting (XSS) vulnerability in IBM Intelligent Operations Center 1.5.0 allows remote at... | | |
| CVE-2012-6362 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6363 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6364 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6365 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6366 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6367 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6368 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6369 | Cross-site scripting (XSS) vulnerability in the Troubleshooting Reporting System feature in AgileBit... | E | |
| CVE-2012-6371 | The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits ... | E | |
| CVE-2012-6392 | Cisco Prime LAN Management Solution (LMS) 4.1 through 4.2.2 on Linux does not properly validate auth... | | |
| CVE-2012-6395 | Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecif... | | |
| CVE-2012-6396 | Cisco NX-OS on Nexus 7000 series switches does not properly handle certain line-card replacements, w... | | |
| CVE-2012-6397 | Cross-site scripting (XSS) vulnerability in Cisco WebEx Social (formerly Cisco Quad) allows remote a... | | |
| CVE-2012-6399 | Cisco WebEx 4.1 on iOS does not verify that the server hostname matches a domain name in the subject... | | |
| CVE-2012-6401 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6402 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6403 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6404 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6405 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6406 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6407 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6408 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6409 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6410 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6411 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6412 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6413 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6414 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6415 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6416 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6417 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6418 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6419 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6420 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6421 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2012-6422 | The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when r... | E | |
| CVE-2012-6426 | LemonLDAP::NG before 1.2.3 does not use the signature-verification capability of the Lasso library, ... | S | |
| CVE-2012-6427 | Multiple SQL injection vulnerabilities in Carlo Gavazzi EOS-Box with firmware before 1.0.0.1080_2.1.... | | |
| CVE-2012-6428 | Carlo Gavazzi EOS-Box with firmware before 1.0.0.1080_2.1.10 establishes multiple hardcoded accounts... | | |
| CVE-2012-6429 | Buffer overflow in the PrepareSync method in the SyncService.dll ActiveX control in Samsung Kies bef... | E | |
| CVE-2012-6430 | Cross-site scripting (XSS) vulnerability in Open Solution Quick.Cms 5.0 and Quick.Cart 6.0, possibly... | E | |
| CVE-2012-6431 | Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Se... | | |
| CVE-2012-6432 | Symfony 2.0.x before 2.0.20, 2.1.x before 2.1.5, and 2.2-dev, when the internal routes configuration... | | |
| CVE-2012-6433 | Cross-site request forgery (CSRF) vulnerability in e107_admin/newspost.php in e107 1.0.1 allows remo... | E S | |
| CVE-2012-6434 | Multiple cross-site request forgery (CSRF) vulnerabilities in e107_admin/download.php in e107 1.0.2 ... | E S | |
| CVE-2012-6435 | Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communicati... | | |
| CVE-2012-6436 | Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 17... | | |
| CVE-2012-6437 | Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communicati... | | |
| CVE-2012-6438 | Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 17... | | |
| CVE-2012-6439 | Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communicati... | | |
| CVE-2012-6440 | The web-server password-authentication functionality in Rockwell Automation EtherNet/IP products; 17... | | |
| CVE-2012-6441 | Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communicati... | | |
| CVE-2012-6442 | Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communicati... | | |
| CVE-2012-6447 | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk 5.0.0 through 5.0.2 allows remote a... | | |
| CVE-2012-6448 | Cross-site Scripting (XSS) in cPanel WebHost Manager (WHM) 11.34.0 allows remote attackers to inject... | E | |
| CVE-2012-6449 | The clientconf.html and detailbw.html pages in x3 in cPanel & WHM 11.34.0 (build 8) have a XSS vulne... | E | |
| CVE-2012-6451 | Lorex LNC116 and LNC104 IP Cameras have a Remote Authentication Bypass Vulnerability... | | |
| CVE-2012-6452 | Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, provides diffe... | | |
| CVE-2012-6453 | Cross-site scripting (XSS) vulnerability in the RSS Reader extension before 0.2.6 for MediaWiki allo... | | |
| CVE-2012-6458 | Multiple cross-site scripting (XSS) vulnerabilities in the SilverStripe e-commerce module 3.0 for Si... | | |
| CVE-2012-6459 | ConnMan 1.3 on Tizen continues to list the bluetooth service after offline mode has been enabled, wh... | | |
| CVE-2012-6460 | Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, an... | | |
| CVE-2012-6461 | The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 all... | | |
| CVE-2012-6462 | Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specificatio... | | |
| CVE-2012-6463 | Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arb... | | |
| CVE-2012-6464 | Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arb... | | |
| CVE-2012-6465 | Opera before 12.10 allows remote attackers to execute arbitrary code or cause a denial of service (a... | | |
| CVE-2012-6466 | Opera before 12.10 does not properly handle incorrect size data in a WebP image, which allows remote... | | |
| CVE-2012-6467 | Opera before 12.10 follows Internet shortcuts that are referenced by a (1) IMG element or (2) other ... | | |
| CVE-2012-6468 | Heap-based buffer overflow in Opera before 12.11 allows remote attackers to execute arbitrary code o... | | |
| CVE-2012-6469 | Opera before 12.11 allows remote attackers to determine the existence of arbitrary local files via v... | | |
| CVE-2012-6470 | Opera before 12.12 does not properly allocate memory for GIF images, which allows remote attackers t... | | |
| CVE-2012-6471 | Opera before 12.12 allows remote attackers to spoof the address field via a high rate of HTTP reques... | | |
| CVE-2012-6472 | Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users... | | |
| CVE-2012-6473 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6474 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6475 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6476 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6477 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6478 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6479 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6480 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6481 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6482 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6483 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6484 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6485 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6486 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6487 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6488 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6489 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6490 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6491 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6492 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a... | R | |
| CVE-2012-6493 | Cross-site request forgery (CSRF) vulnerability in Rapid7 Nexpose Security Console before 5.5.4 allo... | E S | |
| CVE-2012-6494 | Rapid7 Nexpose before 5.5.4 contains a session hijacking vulnerability which allows remote attackers... | | |
| CVE-2012-6495 | Multiple directory traversal vulnerabilities in the (1) twikidraw (action/twikidraw.py) and (2) anyw... | E S | |
| CVE-2012-6496 | SQL injection vulnerability in the Active Record component in Ruby on Rails before 3.0.18, 3.1.x bef... | E S | |
| CVE-2012-6497 | The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentiall... | E | |
| CVE-2012-6498 | Unrestricted file upload vulnerability in index.php in Atomymaxsite 2.5 and earlier allows remote at... | | |
| CVE-2012-6499 | Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and earlier f... | E | |
| CVE-2012-6500 | Directory traversal vulnerability in download.lib.php in Pragyan CMS 3.0 and earlier allows remote a... | E | |
| CVE-2012-6501 | The KillProcess method in the HP PKI ActiveX control (HPPKI.ocx) before 1.2.0.1 allows remote attack... | | |
| CVE-2012-6502 | Microsoft Internet Explorer before 10 allows remote attackers to obtain sensitive information about ... | | |
| CVE-2012-6503 | Unspecified vulnerability in the NinjaXplorer component before 1.0.7 for Joomla! has unknown impact ... | S | |
| CVE-2012-6504 | SQL injection vulnerability in mods/hours/data/get_hours.php in PHP Volunteer Management 1.0.2 allow... | E | |
| CVE-2012-6505 | Cross-site scripting (XSS) vulnerability in mods/hours/data/get_hours.php in PHP Volunteer Managemen... | E | |
| CVE-2012-6506 | Multiple cross-site scripting (XSS) vulnerabilities in the Zingiri Web Shop plugin 2.4.0 for WordPre... | E S | |
| CVE-2012-6507 | Multiple SQL injection vulnerabilities in admin.php in ChurchCMS 0.0.1 allow remote attackers to exe... | E | |
| CVE-2012-6508 | Multiple cross-site request forgery (CSRF) vulnerabilities in NetArt Media Car Portal 3.0 allow remo... | E | |
| CVE-2012-6509 | Unrestricted file upload vulnerability in NetArt Media Car Portal 3.0 allows remote attackers to exe... | E | |
| CVE-2012-6510 | Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media Car Portal 3.0 allow remote atta... | E | |
| CVE-2012-6511 | Multiple cross-site scripting (XSS) vulnerabilities in organizer/page/users.php in the Organizer plu... | E | |
| CVE-2012-6512 | The Organizer plugin 1.2.1 for WordPress allows remote attackers to obtain the installation path via... | E | |
| CVE-2012-6513 | Cross-site scripting (XSS) vulnerability in index.php/Admin_Preferences in gpEasy CMS 2.3.3 allows r... | E | |
| CVE-2012-6514 | Cross-site scripting (XSS) vulnerability in the nBill (com_nbill) component 2.3.2 for Joomla! allows... | E | |
| CVE-2012-6515 | eFront 3.6.10, 3.6.11 build 15059, and earlier allows remote attackers to obtain sensitive informati... | E | |
| CVE-2012-6516 | SQL injection vulnerability in PHP Ticket System Beta 1 allows remote attackers to execute arbitrary... | E | |
| CVE-2012-6517 | Multiple cross-site scripting (XSS) vulnerabilities in DiY-CMS 1.0 allow remote attackers to inject ... | E | |
| CVE-2012-6518 | Cross-site request forgery (CSRF) vulnerability in mod.php in DiY-CMS 1.0 allows remote attackers to... | E | |
| CVE-2012-6519 | SQL injection vulnerability in modules/poll/index.php in DIY-CMS 1.0 allows remote attackers to exec... | E | |
| CVE-2012-6520 | Multiple SQL injection vulnerabilities in the advanced search in Wikidforum 2.10 allow remote attack... | E | |
| CVE-2012-6521 | Cross-site scripting (XSS) vulnerability in apps/admin/handlers/versions.php in Elefant CMS 1.2.0 al... | E | |
| CVE-2012-6522 | Directory traversal vulnerability in the getContent function in codes/wcms.php in w-CMS 2.01 allows ... | E | |
| CVE-2012-6523 | Multiple cross-site scripting (XSS) vulnerabilities in w-CMS 2.01 allow remote attackers to inject a... | E | |
| CVE-2012-6524 | SQL injection vulnerability in kommentar.php in pGB 2.12 allows remote attackers to execute arbitrar... | E | |
| CVE-2012-6525 | SQL injection vulnerability in members.php in PHPBridges allows remote attackers to execute arbitrar... | E | |
| CVE-2012-6526 | SQL injection vulnerability in show_code.php in Vastal I-Tech Freelance Zone allows remote attackers... | E | |
| CVE-2012-6527 | Cross-site scripting (XSS) vulnerability in the My Calendar plugin before 1.10.2 for WordPress allow... | E S | |
| CVE-2012-6528 | Multiple cross-site scripting (XSS) vulnerabilities in ATutor before 2.1 allow remote attackers to i... | E | |
| CVE-2012-6529 | Multiple SQL injection vulnerabilities in Marinet CMS allow remote attackers to execute arbitrary SQ... | E | |
| CVE-2012-6530 | Stack-based buffer overflow in Sysax Multi Server before 5.52, when HTTP is enabled, allows remote a... | E | |
| CVE-2012-6531 | (1) Zend_Dom, (2) Zend_Feed, and (3) Zend_Soap in Zend Framework 1.x before 1.11.13 and 1.12.x befor... | | |
| CVE-2012-6532 | (1) Zend_Dom, (2) Zend_Feed, (3) Zend_Soap, and (4) Zend_XmlRpc in Zend Framework 1.x before 1.11.13... | | |
| CVE-2012-6533 | Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1... | | |
| CVE-2012-6534 | Novell Sentinel Log Manager before 1.2.0.3 allows remote attackers to create data retention policies... | E | |
| CVE-2012-6535 | DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allow... | | |
| CVE-2012-6536 | net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not verify that the actual Netlink message ... | S | |
| CVE-2012-6537 | net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not initialize certain structures, which al... | S | |
| CVE-2012-6538 | The copy_to_user_auth function in net/xfrm/xfrm_user.c in the Linux kernel before 3.6 uses an incorr... | S | |
| CVE-2012-6539 | The dev_ifconf function in net/socket.c in the Linux kernel before 3.6 does not initialize a certain... | S | |
| CVE-2012-6540 | The do_ip_vs_get_ctl function in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel before 3.6 does ... | S | |
| CVE-2012-6541 | The ccid3_hc_tx_getsockopt function in net/dccp/ccids/ccid3.c in the Linux kernel before 3.6 does no... | S | |
| CVE-2012-6542 | The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect retu... | S | |
| CVE-2012-6543 | The l2tp_ip6_getname function in net/l2tp/l2tp_ip6.c in the Linux kernel before 3.6 does not initial... | S | |
| CVE-2012-6544 | The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain str... | S | |
| CVE-2012-6545 | The Bluetooth RFCOMM implementation in the Linux kernel before 3.6 does not properly initialize cert... | S | |
| CVE-2012-6546 | The ATM implementation in the Linux kernel before 3.6 does not initialize certain structures, which ... | S | |
| CVE-2012-6547 | The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel before 3.6 does not initialize... | S | |
| CVE-2012-6548 | The udf_encode_fh function in fs/udf/namei.c in the Linux kernel before 3.6 does not initialize a ce... | S | |
| CVE-2012-6549 | The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not ini... | S | |
| CVE-2012-6550 | Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 allows remote attackers to in... | | |
| CVE-2012-6551 | The default configuration of Apache ActiveMQ before 5.8.0 enables a sample web application, which al... | | |
| CVE-2012-6552 | Unspecified vulnerability in admin/action.php in phpVMS 2.1.x before 2.1.935 has unknown impact and ... | | |
| CVE-2012-6553 | Heap-based buffer overflow in Resource Hacker 3.6.0.92 allows remote attackers to execute arbitrary ... | E | |
| CVE-2012-6554 | functions/html_to_text.php in the Chat module before 1.5.2 for activeCollab allows remote authentica... | E | |
| CVE-2012-6555 | Cross-site scripting (XSS) vulnerability in the LatestComment plugin 1.1 for Vanilla Forums allows r... | E | |
| CVE-2012-6556 | Multiple cross-site scripting (XSS) vulnerabilities in the FirstLastNames plugin 1.1.1 for Vanilla F... | E | |
| CVE-2012-6557 | Multiple cross-site scripting (XSS) vulnerabilities in the AboutMe plugin 1.1.1 for Vanilla Forums a... | E | |
| CVE-2012-6558 | Heap-based buffer overflow in HeavenTools PE Explorer 1.99 R6 allows remote attackers to execute arb... | E | |
| CVE-2012-6559 | Multiple cross-site scripting (XSS) vulnerabilities in FreeNAC 3.02 allow remote attackers to inject... | E | |
| CVE-2012-6560 | SQL injection vulnerability in deviceadd.php in FreeNAC 3.02 allows remote attackers to execute arbi... | E | |
| CVE-2012-6561 | Cross-site scripting (XSS) vulnerability in engine/lib/views.php in Elgg before 1.8.5 allows remote ... | S | |
| CVE-2012-6562 | engine/lib/users.php in Elgg before 1.8.5 does not properly specify permissions for the useradd acti... | S | |
| CVE-2012-6563 | engine/lib/access.php in Elgg before 1.8.5 does not properly clear cached access lists during plugin... | S | |
| CVE-2012-6564 | Cross-site scripting (XSS) vulnerability in REDCap before 4.14.5 allows remote attackers to inject a... | | |
| CVE-2012-6565 | Cross-site scripting (XSS) vulnerability in REDCap before 4.14.3 allows remote authenticated users t... | | |
| CVE-2012-6566 | Cross-site scripting (XSS) vulnerability in REDCap before 4.14.2 allows remote attackers to inject a... | | |
| CVE-2012-6567 | REDCap before 4.14.0 allows remote authenticated users to execute arbitrary commands via shell metac... | | |
| CVE-2012-6568 | Buffer overflow in the back-end component in Huawei UTPS 1.0 allows local users to gain privileges v... | E | |
| CVE-2012-6569 | Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS... | | |
| CVE-2012-6570 | The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management compon... | | |
| CVE-2012-6571 | The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management compon... | | |
| CVE-2012-6572 | Cross-site scripting (XSS) vulnerability in the phptemplate_preprocess_node function in template.php... | | |
| CVE-2012-6573 | Cross-site scripting (XSS) vulnerability in the Apache Solr Autocomplete module 6.x-1.x before 6.x-1... | S | |
| CVE-2012-6574 | Cross-site scripting (XSS) vulnerability in the Fonecta verify module 7.x-1.x before 7.x-1.6 for Dru... | S | |
| CVE-2012-6575 | Cross-site scripting (XSS) vulnerability in the Exposed Filter Data module 6.x-1.x before 6.x-1.2 fo... | S | |
| CVE-2012-6576 | Cross-site scripting (XSS) vulnerability in the PRH Search module 7.x-1.x before 7.x-1.1 for Drupal ... | | |
| CVE-2012-6577 | SQL injection vulnerability in the Formhandler extension before 1.4.1 for TYPO3 allows remote authen... | S | |
| CVE-2012-6578 | Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled with a... | S | |
| CVE-2012-6579 | Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allow... | S | |
| CVE-2012-6580 | Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, does ... | S | |
| CVE-2012-6581 | Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allow... | S | |
| CVE-2012-6582 | Cross-site scripting (XSS) vulnerability in the Spambot module 6.x-3.x before 6.x-3.2 and 7.x-1.x be... | S | |
| CVE-2012-6583 | Cross-site scripting (XSS) vulnerability in the Imagemenu module 6.x-1.x before 6.x-1.4 for Drupal a... | S | |
| CVE-2012-6584 | Multiple SQL injection vulnerabilities in MYRE Realty Manager allow remote attackers to execute arbi... | E | |
| CVE-2012-6585 | Cross-site scripting (XSS) vulnerability in search.php in MYRE Realty Manager allows remote attacker... | E | |
| CVE-2012-6586 | Multiple SQL injection vulnerabilities in MYRE Vacation Rental Software allow remote attackers to ex... | E | |
| CVE-2012-6587 | Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Ren... | E | |
| CVE-2012-6588 | SQL injection vulnerability in links.php in MYRE Business Directory allows remote attackers to execu... | E | |
| CVE-2012-6589 | Cross-site scripting (XSS) vulnerability in search.php in MYRE Business Directory allows remote atta... | E | |
| CVE-2012-6590 | The web-based management UI in Palo Alto Networks PAN-OS 4.0.x before 4.0.8 allows remote attackers ... | | |
| CVE-2012-6591 | The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x be... | | |
| CVE-2012-6592 | Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.5 allows remote attackers to execute ar... | | |
| CVE-2012-6593 | Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x before 4.0.4 allows remote attackers to execute ar... | | |
| CVE-2012-6594 | The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.11, 4.0.x befor... | | |
| CVE-2012-6595 | The device-management command-line interface in Palo Alto Networks PAN-OS 4.0.x before 4.0.9 and 4.1... | | |
| CVE-2012-6596 | Palo Alto Networks PAN-OS 4.0.x before 4.0.9 and 4.1.x before 4.1.3 stores cleartext LDAP bind passw... | | |
| CVE-2012-6597 | Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x before 4.0.9 allows remote authenticated users to ... | | |
| CVE-2012-6598 | The device-management command-line interface in Palo Alto Networks PAN-OS 4.0.x before 4.0.8 allows ... | | |
| CVE-2012-6599 | The device-management command-line interface in Palo Alto Networks PAN-OS 4.0.x before 4.0.8 and 4.1... | | |
| CVE-2012-6600 | The device-management command-line interface in Palo Alto Networks PAN-OS 4.0.x before 4.0.9 and 4.1... | | |
| CVE-2012-6601 | The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.12, 4.0.x befor... | | |
| CVE-2012-6602 | The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.10 and 4.0.x be... | | |
| CVE-2012-6603 | The web management UI in Palo Alto Networks PAN-OS before 3.1.12, 4.0.x before 4.0.10, and 4.1.x bef... | | |
| CVE-2012-6604 | The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x be... | | |
| CVE-2012-6605 | The device-management command-line interface in Palo Alto Networks PAN-OS before 3.1.11 and 4.0.x be... | | |
| CVE-2012-6606 | Palo Alto Networks GlobalProtect before 1.1.7, and NetConnect, does not verify X.509 certificates fr... | | |
| CVE-2012-6607 | The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite ar... | | |
| CVE-2012-6608 | Cross-site scripting (XSS) vulnerability in xmlservices/E_book.php in Elastix 2.3.0 allows remote at... | E | |
| CVE-2012-6609 | Directory traversal vulnerability in a_getlog.cgi in Polycom HDX Video End Points before 3.0.4 and U... | | |
| CVE-2012-6610 | Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote authenticated user... | | |
| CVE-2012-6611 | An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 s... | E | |
| CVE-2012-6612 | The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in Apache Solr before 4.1 allows r... | S | |
| CVE-2012-6613 | D-Link DSR-250N devices with firmware 1.05B73_WW allow Persistent Root Access because of the admin p... | E | |
| CVE-2012-6614 | D-Link DSR-250N devices before 1.08B31 allow remote authenticated users to obtain "persistent root a... | E | |
| CVE-2012-6615 | The ff_ass_split_override_codes function in libavcodec/ass_split.c in FFmpeg before 1.0.2 allows rem... | | |
| CVE-2012-6616 | The mov_text_decode_frame function in libavcodec/movtextdec.c in FFmpeg before 1.0.2 allows remote a... | E | |
| CVE-2012-6617 | The prepare_sdp_description function in ffserver.c in FFmpeg before 1.0.2 allows remote attackers to... | | |
| CVE-2012-6618 | The av_probe_input_buffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with ... | E | |
| CVE-2012-6619 | The default configuration for MongoDB before 2.3.2 does not validate objects, which allows remote au... | E | |
| CVE-2012-6620 | Multiple cross-site scripting (XSS) vulnerabilities in the (1) tasks and (2) search views in Horde K... | E S | |
| CVE-2012-6621 | Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1, 3.1.2, 3.2.3, and earlier ... | | |
| CVE-2012-6622 | Multiple cross-site scripting (XSS) vulnerabilities in fs-admin/fs-admin.php in the ForumPress WP Fo... | E S | |
| CVE-2012-6623 | Cross-site scripting (XSS) vulnerability in fs-admin/wpf-add-forum.php in the ForumPress WP Forum Se... | S | |
| CVE-2012-6624 | Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold plugin 2.1 for WordPress allows r... | E | |
| CVE-2012-6625 | SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress WP Forum Server plugin before... | S | |
| CVE-2012-6626 | SQL injection vulnerability in verify-user.php in b2ePMS 1.0 allows remote attackers to execute arbi... | E | |
| CVE-2012-6627 | Cross-site scripting (XSS) vulnerability in admin/test_mail.php in the Newsletter Manager plugin 1.0... | E | |
| CVE-2012-6628 | Multiple cross-site scripting (XSS) vulnerabilities in the Newsletter Manager plugin before 1.0.2 fo... | E S | |
| CVE-2012-6629 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Newsletter Manager plugin 1.0.2 an... | | |
| CVE-2012-6630 | Multiple cross-site scripting (XSS) vulnerabilities in the Media Library Categories plugin 1.1.1 for... | E | |
| CVE-2012-6631 | Cross-site request forgery (CSRF) vulnerability in accounts/admin/index.php in Vessio NetBill 1.2 al... | E | |
| CVE-2012-6632 | Multiple cross-site scripting (XSS) vulnerabilities in Vessio NetBill 1.2 allow remote attackers to ... | E | |
| CVE-2012-6633 | Cross-site scripting (XSS) vulnerability in wp-includes/default-filters.php in WordPress before 3.3.... | | |
| CVE-2012-6634 | wp-admin/media-upload.php in WordPress before 3.3.3 allows remote attackers to obtain sensitive info... | | |
| CVE-2012-6635 | wp-admin/includes/class-wp-posts-list-table.php in WordPress before 3.3.3 does not properly restrict... | | |
| CVE-2012-6636 | The Android API before 17 does not properly restrict the WebView.addJavascriptInterface method, whic... | E | |
| CVE-2012-6637 | Apache Cordova 3.3.0 and earlier and Adobe PhoneGap 2.9.0 and earlier do not anchor the end of domai... | E S | |
| CVE-2012-6638 | The tcp_rcv_state_process function in net/ipv4/tcp_input.c in the Linux kernel before 3.2.24 allows ... | S | |
| CVE-2012-6639 | An privilege elevation vulnerability exists in Cloud-init before 0.7.0 when requests to an untrusted... | S | |
| CVE-2012-6640 | Cross-site scripting (XSS) vulnerability in Horde Internet Mail Program (IMP) before 5.0.22, as used... | | |
| CVE-2012-6641 | Cross-site scripting (XSS) vulnerability in redirect.php in the Socolissimo module (modules/socoliss... | | |
| CVE-2012-6642 | Cross-site scripting (XSS) vulnerability in ClipBucket 2.6 allows remote attackers to inject arbitra... | | |
| CVE-2012-6643 | Multiple SQL injection vulnerabilities in the update_counter function in includes/functions.php in C... | | |
| CVE-2012-6644 | Multiple cross-site scripting (XSS) vulnerabilities in ClipBucket 2.6 allow remote attackers to inje... | E | |
| CVE-2012-6645 | Cross-site scripting (XSS) vulnerability in the autocomplete functionality in the Finder module 6.x-... | E S | |
| CVE-2012-6646 | F-Secure Anti-Virus, Safe Anywhere, and PSB Workstation Security before 11500 for Mac OS X allows lo... | | |
| CVE-2012-6647 | The futex_wait_requeue_pi function in kernel/futex.c in the Linux kernel before 3.5.1 does not ensur... | | |
| CVE-2012-6648 | gdm/guest-session-cleanup.sh in gdm-guest-session 0.24 and earlier, as used in Ubuntu Linux 10.04 LT... | S | |
| CVE-2012-6649 | WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improp... | | |
| CVE-2012-6651 | Multiple directory traversal vulnerabilities in the Vitamin plugin before 1.1.0 for WordPress allow ... | E S | |
| CVE-2012-6652 | Directory traversal vulnerability in pageflipbook.php script from index.php in Page Flip Book plugin... | E | |
| CVE-2012-6653 | Unspecified vulnerability in the All Video Gallery (all-video-gallery) plugin before 1.2.0 for WordP... | S | |
| CVE-2012-6654 | Multiple SQL injection vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to execut... | E | |
| CVE-2012-6655 | An issue exists AccountService 0.6.37 in the user_change_password_authorized_cb() function in user.c... | E | |
| CVE-2012-6656 | iconvdata/ibm930.c in GNU C Library (aka glibc) before 2.16 allows context-dependent attackers to ca... | E | |
| CVE-2012-6657 | The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure tha... | E | |
| CVE-2012-6658 | Multiple cross-site scripting (XSS) vulnerabilities in SpiceWorks 5.3.75941 allow remote attackers t... | E | |
| CVE-2012-6659 | Cross-site scripting (XSS) vulnerability in the admin interface in Phorum before 5.2.19 allows remot... | | |
| CVE-2012-6660 | GE Healthcare Precision MPi has a password of (1) orion for the serviceapp user, (2) orion for the c... | | |
| CVE-2012-6661 | Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, does not reseed the pseudo... | E | |
| CVE-2012-6662 | Cross-site scripting (XSS) vulnerability in the default content option in jquery.ui.tooltip.js in th... | S | |
| CVE-2012-6663 | General Electric D20ME devices are not properly configured and reveal plaintext passwords.... | | |
| CVE-2012-6664 | Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 an... | | |
| CVE-2012-6665 | Directory traversal vulnerability in index.php in phpMoneyBooks 1.0.4 allows remote attackers to rea... | | |
| CVE-2012-6666 | vBSeo before 3.6.0PL2 allows XSS via the member.php u parameter.... | E | |
| CVE-2012-6667 | Cross-site scripting (XSS) vulnerability in vbshout.php in DragonByte Technologies vBShout module fo... | E | |
| CVE-2012-6668 | Multiple cross-site scripting (XSS) vulnerabilities in the Shout Reports in the DragonByte Technolog... | S | |
| CVE-2012-6670 | Multiple cross-site scripting (XSS) vulnerabilities in the DragonByte Technologies vbActivity module... | S | |
| CVE-2012-6671 | Multiple cross-site scripting (XSS) vulnerabilities in actions/main.php in the DragonByte Technologi... | S | |
| CVE-2012-6682 | Cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php in the DragonByte Tec... | S | |
| CVE-2012-6684 | Cross-site scripting (XSS) vulnerability in the RedCloth library 4.2.9 for Ruby and earlier allows r... | E S | |
| CVE-2012-6685 | Nokogiri before 1.5.4 is vulnerable to XXE attacks... | E | |
| CVE-2012-6686 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-4357. Reason: This candidate... | R | |
| CVE-2012-6687 | FastCGI (aka fcgi and libfcgi) 2.4.0 allows remote attackers to cause a denial of service (segmentat... | | |
| CVE-2012-6688 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2012-6689 | The netlink_sendmsg function in net/netlink/af_netlink.c in the Linux kernel before 3.5.5 does not v... | S | |
| CVE-2012-6691 | Multiple cross-site request forgery (CSRF) vulnerabilities in the admin panel in osCMax before 2.5.1... | E | |
| CVE-2012-6692 | Cross-site scripting (XSS) vulnerability in js/wp-seo-metabox.js in the WordPress SEO by Yoast plugi... | E S | |
| CVE-2012-6693 | GE Healthcare Centricity PACS 4.0 Server has a default password of (1) nasro for the nasro (ReadOnly... | | |
| CVE-2012-6694 | GE Healthcare Centricity PACS Workstation 4.0 and 4.0.1, and Server 4.0, has a password of 2charGE f... | | |
| CVE-2012-6695 | GE Healthcare Centricity PACS Workstation 4.0 and 4.0.1 has a password of ddpadmin for the ddpadmin ... | | |
| CVE-2012-6696 | inspircd in Debian before 2.0.7 does not properly handle unsigned integers. NOTE: This vulnerabilit... | S | |
| CVE-2012-6697 | InspIRCd before 2.0.7 allows remote attackers to cause a denial of service (infinite loop).... | S | |
| CVE-2012-6698 | The decode_search function in dhcp.c in dhcpcd 3.x allows remote DHCP servers to cause a denial of s... | | |
| CVE-2012-6699 | The decode_search function in dhcp.c in dhcpcd 3.x allows remote DHCP servers to cause a denial of s... | | |
| CVE-2012-6700 | The decode_search function in dhcp.c in dhcpcd 3.x does not properly free allocated memory, which al... | | |
| CVE-2012-6701 | Integer overflow in fs/aio.c in the Linux kernel before 3.4.1 allows local users to cause a denial o... | | |
| CVE-2012-6702 | Expat, when used in a parser that has not called XML_SetHashSalt or passed it a seed of 0, makes it ... | | |
| CVE-2012-6703 | Integer overflow in the snd_compr_allocate_buffer function in sound/core/compress_offload.c in the A... | | |
| CVE-2012-6704 | The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative v... | S | |
| CVE-2012-6705 | Cross Site Scripting (XSS) exists in Jamroom before 4.2.7 via the Status Update field.... | E | |
| CVE-2012-6706 | A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus Th... | E | |
| CVE-2012-6707 | WordPress through 4.8.2 uses a weak MD5-based password hashing algorithm, which makes it easier for ... | S | |
| CVE-2012-6708 | jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) functi... | E S | |
| CVE-2012-6709 | ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation.... | S | |
| CVE-2012-6710 | ext_find_user in eXtplorer through 2.1.2 allows remote attackers to bypass authentication via a pass... | E | |
| CVE-2012-6711 | A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by th... | S | |
| CVE-2012-6712 | In the Linux kernel before 3.4, a buffer overflow occurs in drivers/net/wireless/iwlwifi/iwl-agn-sta... | S | |
| CVE-2012-6713 | The job-manager plugin before 0.7.19 for WordPress has multiple XSS issues.... | | |
| CVE-2012-6714 | The count-per-day plugin before 3.2.3 for WordPress has XSS via search words.... | | |
| CVE-2012-6715 | The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header.... | | |
| CVE-2012-6716 | The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links.... | | |
| CVE-2012-6717 | The redirection plugin before 2.2.12 for WordPress has XSS, a different issue than CVE-2011-4562.... | | |
| CVE-2012-6718 | The sharebar plugin before 1.2.2 for WordPress has XSS, a different issue than CVE-2013-3491.... | | |
| CVE-2012-6719 | The sharebar plugin before 1.2.2 for WordPress has SQL injection.... | | |
| CVE-2012-6720 | Multiple cross-site scripting (XSS) vulnerabilities in SocialEngine before 4.2.4 allow remote attack... | E | |
| CVE-2012-6721 | Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) Forum, (2) Event, and (3) Clas... | |