Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (323536 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2012-2142 4 Freedesktop, Opensuse, Redhat and 1 more 4 Poppler, Opensuse, Enterprise Linux and 1 more 2024-11-21 7.8 High
The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator.
CVE-2012-2130 3 Debian, Fedoraproject, Polarssl 3 Debian Linux, Fedora, Polarssl 2024-11-21 7.4 High
A Security Bypass vulnerability exists in PolarSSL 0.99pre4 through 1.1.1 due to a weak encryption error when generating Diffie-Hellman values and RSA keys.
CVE-2012-2092 1 Canonical 1 Ubuntu Cobbler 2024-11-21 5.9 Medium
A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2 in the cobbler-ubuntu-import script due to an error when verifying the GPG signature.
CVE-2012-2087 1 Ispconfig 1 Ispconfig 2024-11-21 9.8 Critical
ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface.
CVE-2012-2079 1 Drupal 1 Activity 2024-11-21 8.8 High
A cross-site request forgery (CSRF) vulnerability in the Activity module 6.x-1.x for Drupal.
CVE-2012-2078 1 Drupal 1 Activity 2024-11-21 4.8 Medium
Cross-site scripting (XSS) vulnerability in the Activity module 6.x-1.x for Drupal.
CVE-2012-20001 1 Prestashop 1 Prestashop 2024-11-21 6.1 Medium
PrestaShop before 1.5.2 allows XSS via the "<object data='data:text/html" substring in the message field.
CVE-2012-1994 1 Hp 1 Systems Insight Manager 2024-11-21 5.7 Medium
HP Systems Insight Manager before 7.0 allows a remote user on adjacent network to access information
CVE-2012-1932 1 Wolfcms 1 Wolf Cms 2024-11-21 4.8 Medium
A cross-site scripting (XSS) vulnerability in Wolf CMS 0.75 and earlier allows remote attackers to inject arbitrary web script or HTML via the setting[admin_email] parameter to admin/setting.
CVE-2012-1915 1 Codeigniter 1 Codeigniter 2024-11-21 6.1 Medium
EllisLab CodeIgniter 2.1.2 allows remote attackers to bypass the xss_clean() Filter and perform XSS attacks.
CVE-2012-1903 1 Telligent 1 Community 2024-11-21 5.4 Medium
XSS in Telligent Community 5.6.583.20496 via a flash file and related to the allowScriptAccess parameter.
CVE-2012-1637 1 Drupal 1 Quick Tabs 2024-11-21 4.8 Medium
Cross-site scripting vulnerability (XSS) in the Quick Tabs module 6.x-2.x before 6.x-2.1, 6.x-3.x before 6.x-3.1, and 7.x-3.x before 7.x-3.3 for Drupal.
CVE-2012-1615 1 Fedoraproject 2 Fedora, Sectool 2024-11-21 7.8 High
A Privilege Escalation vulnerability exits in Fedoraproject Sectool due to an incorrect DBus file.
CVE-2012-1592 1 Apache 1 Struts 2024-11-21 8.8 High
A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.
CVE-2012-1577 3 Debian, Dietlibc Project, Openbsd 3 Debian Linux, Dietlibc, Openbsd 2024-11-21 9.8 Critical
lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0.
CVE-2012-1572 2 Debian, Openstack 2 Debian Linux, Keystone 2024-11-21 7.5 High
OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space
CVE-2012-1567 1 Linuxmint 1 Linuxmint 2024-11-21 7.5 High
LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintUpdate.
CVE-2012-1566 1 Linuxmint 1 Linuxmint 2024-11-21 7.5 High
LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintNanny.
CVE-2012-1563 1 Joomla 1 Joomla\! 2024-11-21 7.5 High
Joomla! before 2.5.3 allows Admin Account Creation.
CVE-2012-1562 1 Joomla 1 Joomla\! 2024-11-21 7.5 High
Joomla! core before 2.5.3 allows unauthorized password change.