|
295221
|
- |
|
xt-commerce
|
xt-commerce
|
Multiple cross-site request forgery (CSRF) vulnerabilities in xt:Commerce 3.0.4 SP2.1 and possibly earlier allow remote attackers to hijack the authentication of Admins for requests that (1) set a Ne…
|
CWE-352
Origin Validation Error
|
CVE-2011-5011
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295222
|
- |
|
ctekproducts
|
skyrouter
|
apps/a3/cfg_ethping.cgi in the Ctek SkyRouter 4200 and 4300 allows remote attackers to execute arbitrary commands via shell metacharacters in the PINGADDRESS parameter for a "u" action.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5010
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295223
|
- |
|
3ssoftware
|
codesys
|
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an…
|
NVD-CWE-Other
|
CVE-2011-5009
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295224
|
- |
|
3ssoftware
|
codesys
|
Integer overflow in the GatewayService component in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to execute arbitrary code via a large size value in the packet header, which triggers a heap-bas…
|
CWE-189
Numeric Errors
|
CVE-2011-5008
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295225
|
- |
|
3ssoftware
|
codesys
|
Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 and earlier, as used on the ABB AC500 PLC and possibly other products, allows remote attackers to execute arbit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5007
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295226
|
- |
|
qqplayer
|
qqplayer
|
Stack-based buffer overflow in QQPlayer 3.2.845 allows remote attackers to execute arbitrary code via a crafted PnSize value in a MOV file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5006
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295227
|
- |
|
claudio_klingler
mads_brunn
|
quixplorer
t3quixplorer
|
Unrestricted file upload vulnerability in QuiXplorer 2.3 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension using the upload action to inde…
|
NVD-CWE-Other
|
CVE-2011-5005
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295228
|
- |
|
fabrikar
|
com_fabrikar
|
Unrestricted file upload vulnerability in models/importcsv.php in the Fabrik (com_fabrik) component before 2.1.1 for Joomla! allows remote authenticated users with Manager privileges to execute arbit…
|
NVD-CWE-Other
|
CVE-2011-5004
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295229
|
- |
|
avid
|
media_composer
|
Stack-based buffer overflow in the Phonetic Indexer (AvidPhoneticIndexer.exe) in Avid Media Composer 5.5.3 and earlier allows remote attackers to execute arbitrary code via a long request to TCP port…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5003
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295230
|
- |
|
finaldraft
|
finaldraft
|
Multiple stack-based buffer overflows in Final Draft 8 before 8.02 allow remote attackers to execute arbitrary code via a .fdx or .fdxt file with long (1) Word, (2) Transition, (3) Location, (4) Exte…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5002
|
2024-11-21 10:33 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
