CVE List

Id CVE No. Status Description Phase Votes Comments Actions
57083  CVE-2012-3840  Candidate  Multiple cross-site scripting (XSS) vulnerabilities in index.php/users/form/user_id in MyClientBase 0.12 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name or (2) last_name parameters.  Assigned (20120703)  None (candidate not yet proposed)    View
57339  CVE-2012-4096  Candidate  The local file editor in the Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) allows local users to gain privileges and modify arbitrary fabric-interconnect files, in the context of a vi process, via unspecified commands, aka Bug ID CSCtn06574.  Assigned (20120731)  None (candidate not yet proposed)    View
57595  CVE-2012-4352  Candidate  Multiple cross-site scripting (XSS) vulnerabilities in Stoneware webNetwork 6.1 before SP1 allow remote attackers to inject arbitrary web script or HTML via the blogName parameter to (1) community/blog.jsp or (2) community/blogSearch.jsp, the (3) calendarType or (4) monthNumber parameter to community/calendar.jsp, or the (5) flag parameter to swDashboard/ajax/setAppFlag.jsp.  Assigned (20120817)  None (candidate not yet proposed)    View
57851  CVE-2012-4608  Candidate  Cross-site request forgery (CSRF) vulnerability in the web interface in EMC RSA NetWitness Informer before 2.0.5.6 allows remote attackers to hijack the authentication of arbitrary users.  Assigned (20120824)  None (candidate not yet proposed)    View
58107  CVE-2012-4864  Candidate  Oreans WinLicense 2.1.8.0 allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via a crafted xml file.  Assigned (20120906)  None (candidate not yet proposed)    View

Page 20619 of 20943, showing 5 records out of 104715 total, starting on record 103091, ending on 103095

Actions