| Max CVSS | 5.8 | Min CVSS | 5.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-5786 | 5.8 |
The wsdl_first_https sample code in distribution/src/main/release/samples/wsdl_first_https/src/main/ in Apache CXF before 2.7.0 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field o
|
11-04-2024 - 00:49 | 04-11-2012 - 22:55 | |
| CVE-2012-3446 | 5.8 |
Apache Libcloud before 0.11.1 uses an incorrect regular expression during verification of whether the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-mi
|
14-02-2024 - 17:22 | 04-11-2012 - 22:55 | |
| CVE-2012-5822 | 5.8 |
The contribution feature in Zamboni does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a
|
14-02-2024 - 17:20 | 04-11-2012 - 22:55 | |
| CVE-2012-5817 | 5.8 |
Codehaus XFire 1.2.6 and earlier, as used in the Amazon EC2 API Tools Java library and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate,
|
14-02-2024 - 17:18 | 04-11-2012 - 22:55 | |
| CVE-2012-5819 | 5.8 |
FilesAnywhere does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid cert
|
14-02-2024 - 17:18 | 04-11-2012 - 22:55 | |
| CVE-2012-5810 | 5.8 |
The Chase mobile banking application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL
|
14-02-2024 - 17:17 | 04-11-2012 - 22:55 | |
| CVE-2012-5821 | 5.8 |
Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function.
|
09-02-2024 - 03:18 | 04-11-2012 - 22:55 | |
| CVE-2012-5824 | 5.8 |
Trillian 5.1.0.19 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid
|
07-02-2022 - 18:59 | 04-11-2012 - 22:55 | |
| CVE-2012-5781 | 5.8 |
Amazon Elastic Load Balancing API Tools does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers v
|
10-05-2021 - 15:43 | 04-11-2012 - 22:55 | |
| CVE-2012-5783 | 5.8 |
Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.5
|
23-04-2021 - 17:28 | 04-11-2012 - 22:55 | |
| CVE-2012-5784 | 5.8 |
Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a do
|
07-06-2019 - 21:29 | 04-11-2012 - 22:55 | |
| CVE-2012-5802 | 5.8 |
The PayPal module in Ubercart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbi
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5795 | 5.8 |
The PayPal Express module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers v
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5813 | 5.8 |
The Android_Pusher library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers vi
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5825 | 5.8 |
Tweepy does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5816 | 5.8 |
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5792 | 5.8 |
The Sage Pay Direct module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5789 | 5.8 |
PayPal Payments Standard PHP Library before 20120427 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5782 | 5.8 |
Amazon Flexible Payments Service (FPS) PHP Library does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SS
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5796 | 5.8 |
The PayPal Pro module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5787 | 5.8 |
The PayPal merchant SDK does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5794 | 5.8 |
The MoneyBookers module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5785 | 5.8 |
Apache Axis2/Java 1.6.2 and earlier does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5820 | 5.8 |
The developer-account sample code in Google AdMob does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5814 | 5.8 |
Weberknecht, as used in GitHub Gaug.es and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5803 | 5.8 |
The Authorize.Net module in Ubercart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5797 | 5.8 |
The PayPal Pro PayFlow module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL serve
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5788 | 5.8 |
The PayPal IPN utility does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary v
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5818 | 5.8 |
ElephantDrive does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid cert
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5800 | 5.8 |
The eBay module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbi
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5790 | 5.8 |
PayPal Payments Standard PHP Library 20120427 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL ser
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5815 | 5.8 |
The Rackspace app 2.1.5 for iOS does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an ar
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5793 | 5.8 |
The Authorize.Net module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers vi
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5812 | 5.8 |
The ACRA library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbit
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5791 | 5.8 |
PayPal Invoicing does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid c
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5804 | 5.8 |
The CyberSource module in Ubercart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an
|
29-08-2017 - 01:32 | 04-11-2012 - 22:55 | |
| CVE-2012-5811 | 5.8 |
The Breezy application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an
|
04-11-2015 - 17:34 | 04-11-2012 - 22:55 | |
| CVE-2012-5809 | 5.8 |
The Groupon Redemptions application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL s
|
04-11-2015 - 17:33 | 04-11-2012 - 22:55 | |
| CVE-2012-5780 | 5.8 |
The Amazon merchant SDK does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary
|
20-11-2012 - 04:50 | 04-11-2012 - 22:55 | |
| CVE-2012-5805 | 5.8 |
The PayPal IPN functionality in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers
|
06-11-2012 - 05:00 | 04-11-2012 - 22:55 | |
| CVE-2012-5806 | 5.8 |
The PayPal Payments Pro module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL server
|
06-11-2012 - 05:00 | 04-11-2012 - 22:55 | |
| CVE-2012-5807 | 5.8 |
The Authorize.Net eCheck module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL serve
|
06-11-2012 - 05:00 | 04-11-2012 - 22:55 | |
| CVE-2012-5799 | 5.8 |
The Canada Post (aka CanadaPost) module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof
|
06-11-2012 - 05:00 | 04-11-2012 - 22:55 | |
| CVE-2012-5808 | 5.8 |
The LinkPoint module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an a
|
05-11-2012 - 18:57 | 04-11-2012 - 22:55 | |
| CVE-2012-5801 | 5.8 |
The PayPal module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an ar
|
05-11-2012 - 18:22 | 04-11-2012 - 22:55 | |
| CVE-2012-5798 | 5.8 |
The PayPal Pro PayFlow EC module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL se
|
05-11-2012 - 18:17 | 04-11-2012 - 22:55 | |
| CVE-2012-5823 | 5.8 |
Open Source Classifieds does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary
|
05-11-2012 - 05:00 | 04-11-2012 - 22:55 |