2012 CVE Vulnerabilities
5,939 CVEs published in 2012.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2012-4919 | CRITICAL | 9.8 | 2.9% | Jan 22, 2020 | Gallery Plugin1.4 for WordPress has a Remote File Include Vulnerability |
| CVE-2012-5190 | CRITICAL | 9.8 | 4.7% | Jan 21, 2020 | Prizm Content Connect 5.1 has an Arbitrary File Upload Vulnerability |
| CVE-2012-4750 | CRITICAL | 9.8 | 8.9% | Jan 13, 2020 | A Code Execution vulnerability exists in the memcpy function when processing AMF requests in Ezhometech EzServer 7.0, wh... |
| CVE-2012-4284 | CRITICAL | 9.8 | 69.5% | Jan 10, 2020 | A Privilege Escalation vulnerability exists in Viscosity 1.4.1 on Mac OS X due to a path name validation issue in the se... |
| CVE-2012-3807 | CRITICAL | 9.8 | 31.6% | Jan 9, 2020 | Samsung Kies before 2.5.0.12094_27_11 has arbitrary file execution. |
| CVE-2012-2226 | CRITICAL | 9.8 | 7.4% | Jan 9, 2020 | Invision Power Board before 3.3.1 fails to sanitize user-supplied input which could allow remote attackers to obtain sen... |
| CVE-2012-2714 | CRITICAL | 9.8 | 3.3% | Jan 9, 2020 | The BrowserID (Mozilla Persona) module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to hijack the authentic... |
| CVE-2012-1259 | CRITICAL | 9.8 | 4.2% | Jan 9, 2020 | Multiple SQL injection vulnerabilities in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and pos... |
| CVE-2012-5878 | CRITICAL | 9.8 | 9.3% | Jan 3, 2020 | Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 through 0.1.4 allows remote attackers to execute arbitrary comman... |
| CVE-2012-6094 | CRITICAL | 9.8 | 2.1% | Dec 20, 2019 | cups (Common Unix Printing System) 'Listen localhost:631' option not honored correctly which could provide unauthorized ... |
| CVE-2012-1577 | CRITICAL | 9.8 | 1.6% | Dec 10, 2019 | lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0. |
| CVE-2012-5582 | CRITICAL | 9.8 | 1.8% | Nov 25, 2019 | opendnssec misuses libcurl API |
| CVE-2012-3460 | CRITICAL | 9.8 | 1.3% | Nov 21, 2019 | cumin: At installation postgresql database user created without password |
| CVE-2012-0824 | CRITICAL | 9.8 | 1.8% | Nov 19, 2019 | gnusound 0.7.5 has format string issue |
| CVE-2012-6125 | CRITICAL | 9.8 | 1.8% | Oct 31, 2019 | Chicken before 4.8.0 is susceptible to algorithmic complexity attacks related to hash table collisions. |
| CVE-2012-0694 | CRITICAL | 9.8 | 67.3% | Oct 29, 2019 | SugarCRM CE <= 6.3.1 contains scripts that use "unserialize()" with user controlled input which allows remote attackers ... |
| CVE-2012-1187 | CRITICAL | 9.8 | 1.6% | Oct 29, 2019 | Bitlbee does not drop extra group privileges correctly in unix.c |
| CVE-2012-6712 | CRITICAL | 9.8 | 3.0% | Jul 27, 2019 | In the Linux kernel before 3.4, a buffer overflow occurs in drivers/net/wireless/iwlwifi/iwl-agn-sta.c, which will cause... |
| CVE-2012-1301 | CRITICAL | 9.8 | 3.5% | Apr 13, 2017 | The FeedProxy.aspx script in Umbraco 4.7.0 allows remote attackers to proxy requests on their behalf via the "url" param... |
| CVE-2012-3363 | CRITICAL | 9.1 | 50.2% | Feb 13, 2013 | Zend_XmlRpc in Zend Framework 1.x before 1.11.12 and 1.12.x before 1.12.0 does not properly handle SimpleXMLElement clas... |
| CVE-2012-6437 | CRITICAL | 9.8 | 9.6% | Jan 24, 2013 | The device does not properly authenticate users and the potential exists for a remote user to upload a new firmware imag... |
| CVE-2012-6069 | CRITICAL | 10 | 2.6% | Jan 21, 2013 | The CoDeSys Runtime Toolkit’s file transfer functionality does not perform input validation, which allows an attacker t... |
| CVE-2012-6068 | CRITICAL | 9.8 | 5.3% | Jan 21, 2013 | The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attac... |
| CVE-2012-4787 | CRITICAL | 9 | 17.6% | Dec 12, 2012 | Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code v... |
| CVE-2012-2239 | CRITICAL | 9.1 | 1.6% | Nov 24, 2012 | Mahara 1.4.x before 1.4.4 and 1.5.x before 1.5.3 allows remote attackers to read arbitrary files or create TCP connectio... |
Check if your code is affected by 2012 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now