2012 CVE Vulnerabilities
5,939 CVEs published in 2012.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2012-10026 | CRITICAL | 10 | 1.1% | Aug 5, 2025 | The WordPress plugin Asset-Manager version 2.0 and below contains an unauthenticated arbitrary file upload vulnerability... |
| CVE-2012-10025 | CRITICAL | 10 | 1.2% | Aug 5, 2025 | The WordPress plugin Advanced Custom Fields (ACF) version 3.5.1 and below contains a remote file inclusion (RFI) vulnera... |
| CVE-2012-10021 | CRITICAL | 9.3 | 3.0% | Jul 31, 2025 | A stack-based buffer overflow vulnerability exists in D-Link DIR-605L Wireless N300 Cloud Router firmware versions 1.12 ... |
| CVE-2012-10020 | CRITICAL | 9.8 | 2.9% | Jul 22, 2025 | The FoxyPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the up... |
| CVE-2012-10019 | CRITICAL | 9.8 | 2.3% | Jul 19, 2025 | The Front End Editor plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation vi... |
| CVE-2012-6664 | CRITICAL | 9.1 | 29.5% | Jun 21, 2024 | Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 and earlier allow remo... |
| CVE-2012-5872 | CRITICAL | 9.8 | 0.8% | Apr 26, 2023 | ARC (aka ARC2) through 2011-12-01 allows blind SQL Injection in getTriplePatternSQL in ARC2_StoreSelectQueryHandler.php ... |
| CVE-2012-10011 | CRITICAL | 9.8 | 0.7% | Apr 9, 2023 | A vulnerability was found in HD FLV PLayer Plugin up to 1.7 on WordPress. It has been rated as critical. Affected by thi... |
| CVE-2012-10009 | CRITICAL | 9.8 | 0.9% | Mar 21, 2023 | A vulnerability was found in 404like Plugin up to 1.0.2 on WordPress. It has been classified as critical. Affected is th... |
| CVE-2012-10008 | CRITICAL | 9.8 | 0.6% | Feb 20, 2023 | A vulnerability, which was classified as critical, has been found in uakfdotb oneapp. This issue affects some unknown pr... |
| CVE-2012-10006 | CRITICAL | 9.8 | 0.6% | Jan 18, 2023 | A vulnerability classified as critical has been found in ale7714 sigeprosi. This affects an unknown part. The manipulati... |
| CVE-2012-2666 | CRITICAL | 9.8 | 1.9% | Jul 9, 2021 | golang/go in 1.0.2 fixes all.bash on shared machines. dotest() in src/pkg/debug/gosym/pclntab_test.go creates a temporar... |
| CVE-2012-10001 | CRITICAL | 9.8 | 2.5% | Jan 6, 2021 | The Limit Login Attempts plugin before 1.7.1 for WordPress does not clear auth cookies upon a lockout, which might make ... |
| CVE-2012-0828 | CRITICAL | 9.8 | 4.2% | Feb 21, 2020 | Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote ... |
| CVE-2012-1124 | CRITICAL | 9.8 | 4.2% | Feb 11, 2020 | SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL... |
| CVE-2012-6611 | CRITICAL | 9.8 | 3.1% | Feb 10, 2020 | An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded... |
| CVE-2012-6306 | CRITICAL | 9.8 | 1.3% | Feb 6, 2020 | A vulnerability exists in HCView (aka Hardcoreview) 1.4 due to a write access violation with a GIF file. |
| CVE-2012-5686 | CRITICAL | 9.8 | 4.8% | Feb 4, 2020 | ZPanel 10.0.1 has insufficient entropy for its password reset process. |
| CVE-2012-5618 | CRITICAL | 9.8 | 1.2% | Feb 4, 2020 | Ushahidi before 2.6.1 has insufficient entropy for forgot-password tokens. |
| CVE-2012-1495 | CRITICAL | 9.8 | 79.8% | Jan 27, 2020 | install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the form_single_user... |
| CVE-2012-6451 | CRITICAL | 9.8 | 2.6% | Jan 24, 2020 | Lorex LNC116 and LNC104 IP Cameras have a Remote Authentication Bypass Vulnerability |
| CVE-2012-6649 | CRITICAL | 9.8 | 16.3% | Jan 23, 2020 | WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload. |
| CVE-2012-5867 | CRITICAL | 9.8 | 2.2% | Jan 23, 2020 | HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability |
| CVE-2012-5699 | CRITICAL | 9.8 | 4.9% | Jan 23, 2020 | BabyGekko before 1.2.4 allows PHP file inclusion. |
| CVE-2012-2087 | CRITICAL | 9.8 | 2.7% | Jan 23, 2020 | ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface. |
Check if your code is affected by 2012 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now