Export limit exceeded: 337982 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (337982 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2013-0192 | 1 Simplemachines | 1 Simple Machines Forum | 2024-11-21 | 4.9 Medium |
| File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3: Forum admin can read files such as the database config. | ||||
| CVE-2013-0186 | 1 Redhat | 3 Cloudforms, Cloudforms Managementengine, Manageiq Enterprise Virtualization Manager | 2024-11-21 | 6.1 Medium |
| Multiple cross-site scripting (XSS) vulnerabilities in ManageIQ EVM allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||
| CVE-2013-0185 | 1 Redhat | 2 Cloudforms Managementengine, Manageiq Enterprise Virtualization Manager | 2024-11-21 | N/A |
| Cross-site request forgery (CSRF) vulnerability in ManageIQ Enterprise Virtualization Manager (EVM) allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors. | ||||
| CVE-2013-0180 | 1 Redislabs | 1 Redis | 2024-11-21 | 5.5 Medium |
| Insecure temporary file vulnerability in Redis 2.6 related to /tmp/redis.ds. | ||||
| CVE-2013-0178 | 1 Redislabs | 1 Redis | 2024-11-21 | 5.5 Medium |
| Insecure temporary file vulnerability in Redis before 2.6 related to /tmp/redis-%p.vm. | ||||
| CVE-2013-0165 | 1 Redhat | 1 Openshift | 2024-11-21 | 7.3 High |
| cartridges/openshift-origin-cartridge-mongodb-2.2/info/bin/dump.sh in OpenShift does not properly create files in /tmp. | ||||
| CVE-2013-0163 | 1 Redhat | 1 Openshift | 2024-11-21 | 5.5 Medium |
| OpenShift haproxy cartridge: predictable /tmp in set-proxy connection hook which could facilitate DoS | ||||
| CVE-2013-0161 | 1 Havalite | 1 Havalite | 2024-11-21 | 5.4 Medium |
| Havalite CMS 1.1.7 has a stored XSS vulnerability | ||||
| CVE-2013-0159 | 1 Fedoraproject | 1 Fedora | 2024-11-21 | N/A |
| The fedora-business-cards package before 1-0.1.beta1.fc17 on Fedora 17 and before 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symlink attack on /tmp/fedora-business-cards-buffer.svg. | ||||
| CVE-2012-6721 | 1 Socialengine | 1 Socialengine | 2024-11-21 | 6.3 Medium |
| Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) Forum, (2) Event, and (3) Classifieds plugins in SocialEngine before 4.2.4. | ||||
| CVE-2012-6720 | 1 Socialengine | 1 Socialengine | 2024-11-21 | 6.1 Medium |
| Multiple cross-site scripting (XSS) vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) title parameter to music/create, (2) location parameter to events/create, or (3) search parameter to widget/index/content_id/*. | ||||
| CVE-2012-6719 | 1 Sharebar Project | 1 Sharebar | 2024-11-21 | N/A |
| The sharebar plugin before 1.2.2 for WordPress has SQL injection. | ||||
| CVE-2012-6718 | 1 Sharebar Project | 1 Sharebar | 2024-11-21 | N/A |
| The sharebar plugin before 1.2.2 for WordPress has XSS, a different issue than CVE-2013-3491. | ||||
| CVE-2012-6717 | 1 Redirection | 1 Redirection | 2024-11-21 | N/A |
| The redirection plugin before 2.2.12 for WordPress has XSS, a different issue than CVE-2011-4562. | ||||
| CVE-2012-6716 | 1 Pixelite | 1 Events Manager | 2024-11-21 | N/A |
| The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links. | ||||
| CVE-2012-6715 | 1 Formbuilder Project | 1 Formbuilder | 2024-11-21 | N/A |
| The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header. | ||||
| CVE-2012-6714 | 1 Count Per Day Project | 1 Count Per Day | 2024-11-21 | N/A |
| The count-per-day plugin before 3.2.3 for WordPress has XSS via search words. | ||||
| CVE-2012-6713 | 1 Wp-jobmanager | 1 Job Manager | 2024-11-21 | N/A |
| The job-manager plugin before 0.7.19 for WordPress has multiple XSS issues. | ||||
| CVE-2012-6712 | 1 Linux | 1 Linux Kernel | 2024-11-21 | 9.8 Critical |
| In the Linux kernel before 3.4, a buffer overflow occurs in drivers/net/wireless/iwlwifi/iwl-agn-sta.c, which will cause at least memory corruption. | ||||
| CVE-2012-6711 | 2 Gnu, Redhat | 2 Bash, Enterprise Linux | 2024-11-21 | N/A |
| A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" built-in function, may use this flaw to crash a script or execute code with the privileges of the bash process. This occurs because ansicstr() in lib/sh/strtrans.c mishandles u32cconv(). | ||||