Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.7

    MEDIUM
    CVE-2012-1994

    HP Systems Insight Manager before 7.0 allows a remote user on adjacent network to access information... Read more

    Affected Products : systems_insight_manager
    • EPSS Score: %0.54
    • Published: Feb. 10, 2020
    • Modified: Nov. 21, 2024

  • 4.8

    MEDIUM
    CVE-2012-1932

    A cross-site scripting (XSS) vulnerability in Wolf CMS 0.75 and earlier allows remote attackers to inject arbitrary web script or HTML via the setting[admin_email] parameter to admin/setting.... Read more

    Affected Products : wolf_cms
    • EPSS Score: %0.15
    • Published: Feb. 19, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2012-1915

    EllisLab CodeIgniter 2.1.2 allows remote attackers to bypass the xss_clean() Filter and perform XSS attacks.... Read more

    Affected Products : codeigniter
    • EPSS Score: %0.28
    • Published: Jan. 09, 2020
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2012-1903

    XSS in Telligent Community 5.6.583.20496 via a flash file and related to the allowScriptAccess parameter.... Read more

    Affected Products : community
    • EPSS Score: %0.21
    • Published: Feb. 13, 2020
    • Modified: Nov. 21, 2024

  • 4.8

    MEDIUM
    CVE-2012-1637

    Cross-site scripting vulnerability (XSS) in the Quick Tabs module 6.x-2.x before 6.x-2.1, 6.x-3.x before 6.x-3.1, and 7.x-3.x before 7.x-3.3 for Drupal.... Read more

    Affected Products : quick_tabs
    • EPSS Score: %0.36
    • Published: Nov. 21, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2012-1615

    A Privilege Escalation vulnerability exits in Fedoraproject Sectool due to an incorrect DBus file.... Read more

    Affected Products : fedora sectool
    • EPSS Score: %0.10
    • Published: Dec. 06, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2012-1592

    A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.... Read more

    Affected Products : struts
    • EPSS Score: %0.81
    • Published: Dec. 05, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2012-1577

    lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0.... Read more

    Affected Products : debian_linux openbsd dietlibc
    • EPSS Score: %0.91
    • Published: Dec. 10, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2012-1572

    OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space... Read more

    Affected Products : debian_linux keystone
    • EPSS Score: %0.42
    • Published: Nov. 12, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2012-1567

    LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintUpdate.... Read more

    Affected Products : linuxmint
    • EPSS Score: %0.24
    • Published: Feb. 07, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2012-1566

    LinuxMint as of 2012-03-19 has temporary file creation vulnerabilities in mintNanny.... Read more

    Affected Products : linuxmint
    • EPSS Score: %0.24
    • Published: Feb. 07, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2012-1563

    Joomla! before 2.5.3 allows Admin Account Creation.... Read more

    Affected Products : joomla\!
    • EPSS Score: %0.42
    • Published: Jan. 15, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2012-1562

    Joomla! core before 2.5.3 allows unauthorized password change.... Read more

    Affected Products : joomla\!
    • EPSS Score: %0.01
    • Published: Jan. 15, 2020
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2012-1500

    Stored XSS vulnerability in UpdateFieldJson.jspa in JIRA 4.4.3 and GreenHopper before 5.9.8 allows an attacker to inject arbitrary script code.... Read more

    Affected Products : jira greenhopper
    • EPSS Score: %0.22
    • Published: Feb. 13, 2020
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2012-1496

    Local file inclusion in WebCalendar before 1.2.5.... Read more

    Affected Products : webcalendar
    • EPSS Score: %0.80
    • Published: Jan. 27, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2012-1495

    install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the form_single_user_login parameter.... Read more

    Affected Products : webcalendar
    • EPSS Score: %88.48
    • Published: Jan. 27, 2020
    • Modified: Nov. 21, 2024

  • 7.4

    HIGH
    CVE-2012-1326

    Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks... Read more

    Affected Products : ironport_web_security_appliance
    • EPSS Score: %0.14
    • Published: Jan. 15, 2020
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2012-1316

    Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks... Read more

    Affected Products : ironport_web_security_appliance
    • EPSS Score: %0.20
    • Published: Jan. 15, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2012-1261

    Cross-site scripting (XSS) vulnerability in cgi-bin/scrut_fa_exclusions.cgi in Plixer International Scrutinizer NetFlow and sFlow Analyzer 8.6.2.16204 and other versions before 9.0.1.19899 allows remote attackers to inject arbitrary web script or HTML via... Read more

    • EPSS Score: %5.58
    • Published: Jan. 09, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2012-1260

    Cross-site scripting (XSS) vulnerability in cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allows remote attackers to inject arbitrary web script or HTML via ... Read more

    • EPSS Score: %3.92
    • Published: Jan. 09, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291618 Results