2012 CVE Vulnerabilities
5,939 CVEs published in 2012.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2012-10064 | CRITICAL | 9.3 | 0.7% | Jan 16, 2026 | Omni Secure Files plugin versions prior to 0.1.14 contain an arbitrary file upload vulnerability in the bundled plupload... |
| CVE-2012-10060 | CRITICAL | 9.3 | 2.8% | Aug 13, 2025 | Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attack... |
| CVE-2012-10059 | CRITICAL | 9.4 | 3.2% | Aug 13, 2025 | Dolibarr ERP/CRM versions <= 3.1.1 and <= 3.2.0 contain a post-authenticated OS command injection vulnerability in its d... |
| CVE-2012-10058 | CRITICAL | 10 | 1.3% | Aug 13, 2025 | RabidHamster R4 v1.25 contains a stack-based buffer overflow vulnerability due to unsafe use of sprintf() when logging m... |
| CVE-2012-10055 | CRITICAL | 9.3 | 2.0% | Aug 13, 2025 | ComSndFTP FTP Server version 1.3.7 Beta contains a format string vulnerability in its handling of the USER command. By s... |
| CVE-2012-10054 | CRITICAL | 9.3 | 2.6% | Aug 13, 2025 | Umbraco CMS versions prior to 4.7.1 are vulnerable to unauthenticated remote code execution via the codeEditorSave.asmx ... |
| CVE-2012-10040 | CRITICAL | 9.4 | 2.5% | Aug 11, 2025 | Openfiler v2.x contains a command injection vulnerability in the system.html page. The device parameter is used to insta... |
| CVE-2012-10039 | CRITICAL | 9.4 | 2.5% | Aug 11, 2025 | ZEN Load Balancer versions 2.0 and 3.0-rc1 contain a command injection vulnerability in content2-2.cgi. The filelog para... |
| CVE-2012-10038 | CRITICAL | 9.3 | 1.4% | Aug 11, 2025 | Auxilium RateMyPet contains an unauthenticated arbitrary file upload vulnerability in upload_banners.php. The banner upl... |
| CVE-2012-10037 | CRITICAL | 9.3 | 1.4% | Aug 11, 2025 | PhpTax version 0.8 contains a remote code execution vulnerability in drawimage.php. The pfilez GET parameter is unsafely... |
| CVE-2012-10053 | CRITICAL | 9.3 | 1.5% | Aug 8, 2025 | Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP he... |
| CVE-2012-10052 | CRITICAL | 9.3 | 1.4% | Aug 8, 2025 | EGallery version 1.2 contains an unauthenticated arbitrary file upload vulnerability in the uploadify.php script. The ap... |
| CVE-2012-10050 | CRITICAL | 9.3 | 1.2% | Aug 8, 2025 | CuteFlow version 2.11.2 and earlier contains an arbitrary file upload vulnerability in the restart_circulation_values_wr... |
| CVE-2012-10049 | CRITICAL | 9.3 | 1.1% | Aug 8, 2025 | WebPageTest version 2.6 and earlier contains an arbitrary file upload vulnerability in the resultimage.php script. The a... |
| CVE-2012-10047 | CRITICAL | 10 | 0.9% | Aug 8, 2025 | Cyclope Employee Surveillance Solution versions 6.x are vulnerable to a SQL injection flaw in its login mechanism. The u... |
| CVE-2012-10046 | CRITICAL | 9.3 | 3.0% | Aug 8, 2025 | The E-Mail Security Virtual Appliance (ESVA) (tested on version ESVA_2057) contains an unauthenticated command injection... |
| CVE-2012-10045 | CRITICAL | 9.3 | 1.1% | Aug 8, 2025 | XODA version 0.4.5 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitra... |
| CVE-2012-10044 | CRITICAL | 10 | 1.6% | Aug 8, 2025 | MobileCartly version 1.0 contains an arbitrary file creation vulnerability in the savepage.php script. The application f... |
| CVE-2012-10043 | CRITICAL | 9.3 | 0.3% | Aug 8, 2025 | A stack-based buffer overflow vulnerability exists in ActFax Server version 4.32, specifically in the "Import Users from... |
| CVE-2012-10041 | CRITICAL | 9.3 | 2.9% | Aug 8, 2025 | WAN Emulator v2.3 contains two unauthenticated command execution vulnerabilities. The result.php script calls shell_exec... |
| CVE-2012-10036 | CRITICAL | 9.3 | 1.5% | Aug 8, 2025 | Project Pier 0.8.8 and earlier contains an unauthenticated arbitrary file upload vulnerability in tools/upload_file.php.... |
| CVE-2012-10035 | CRITICAL | 10 | 1.0% | Aug 5, 2025 | Turbo FTP Server versions 1.30.823 and 1.30.826 contain a buffer overflow vulnerability in the handling of the PORT comm... |
| CVE-2012-10033 | CRITICAL | 9.3 | 1.1% | Aug 5, 2025 | Narcissus is vulnerable to remote code execution via improper input handling in its image configuration workflow. Specif... |
| CVE-2012-10030 | CRITICAL | 9.3 | 1.5% | Aug 5, 2025 | FreeFloat FTP Server contains multiple critical design flaws that allow unauthenticated remote attackers to upload arbit... |
| CVE-2012-10027 | CRITICAL | 9.3 | 1.6% | Aug 5, 2025 | WP-Property plugin for WordPress up to and including version 1.35.0 contains an unauthenticated file upload vulnerabilit... |
Check if your code is affected by 2012 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now