|
295471
|
- |
|
sixapart
|
movable_type
|
Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-5085
|
2024-11-21 10:33 |
2012-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295472
|
- |
|
sixapart
|
movable_type
|
Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5084
|
2024-11-21 10:33 |
2012-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295473
|
- |
|
dotclear
|
dotclear
|
Unrestricted file upload vulnerability in inc/swf/swfupload.swf in Dotclear 2.3.1 and 2.4.2 allows remote attackers to execute arbitrary code by uploading a file with an executable PHP extension, the…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5083
|
2024-11-21 10:33 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295474
|
- |
|
s2member
|
s2member
|
Cross-site scripting (XSS) vulnerability in the s2Member Pro plugin before 111220 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s2member_pro_authnet_checkout[co…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5082
|
2024-11-21 10:33 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295475
|
- |
|
pidgin
|
pidgin
|
The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin before 2.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by changing a nick…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4939
|
2024-11-21 10:33 |
2012-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295476
|
- |
|
ibm
|
maximo_asset_management_essentials
maximo_asset_management
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2011-4819
|
2024-11-21 10:33 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295477
|
- |
|
ibm
|
maximo_asset_management_essentials
maximo_asset_management
|
Open redirect vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phi…
|
CWE-20
Improper Input Validation
|
CVE-2011-4818
|
2024-11-21 10:33 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295478
|
- |
|
ibm
|
maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
trivoli_service_request_manager
maximo_service_desk
tivoli_change_and_configuration_management…
|
The About option on the Help menu in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Ma…
|
CWE-200
Information Exposure
|
CVE-2011-4817
|
2024-11-21 10:33 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295479
|
- |
|
ibm
|
maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
trivoli_service_request_manager
maximo_service_desk
tivoli_change_and_configuration_management…
|
SQL injection vulnerability in the KPI component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Ser…
|
CWE-89
SQL Injection
|
CVE-2011-4816
|
2024-11-21 10:33 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295480
|
- |
|
ibm
|
soliddb
|
The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a ROWNUM condition involving a su…
|
CWE-20
Improper Input Validation
|
CVE-2011-4890
|
2024-11-21 10:33 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
