|
295111
|
- |
|
atvise
|
webmi2ads
|
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly validate values in HTTP requests, which allows remote attackers to cause a denial of service (resource consumption…
|
CWE-20
Improper Input Validation
|
CVE-2011-4883
|
2024-11-21 10:33 |
2012-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295112
|
- |
|
atvise
|
webmi2ads
|
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to cause a denial of service (application exit) via an unspecified command in an HTTP request.
|
CWE-94
Code Injection
|
CVE-2011-4882
|
2024-11-21 10:33 |
2012-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295113
|
- |
|
atvise
|
webmi2ads
|
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly check return values from functions, which allows remote attackers to cause a denial of service (NULL pointer deref…
|
NVD-CWE-Other
|
CVE-2011-4881
|
2024-11-21 10:33 |
2012-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295114
|
- |
|
atvise
|
webmi2ads
|
Directory traversal vulnerability in the web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to read arbitrary files via a crafted HTTP request.
|
CWE-22
Path Traversal
|
CVE-2011-4880
|
2024-11-21 10:33 |
2012-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295115
|
- |
|
microsys
|
promotic
|
Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (data corruption and application crash) via…
|
CWE-399
Resource Management Errors
|
CVE-2011-4874
|
2024-11-21 10:33 |
2012-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295116
|
- |
|
openbsd
|
openssh
|
The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory co…
|
CWE-189
Numeric Errors
|
CVE-2011-5000
|
2024-11-21 10:33 |
2012-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295117
|
- |
|
sixapart
|
movable_type
|
Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-5085
|
2024-11-21 10:33 |
2012-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295118
|
- |
|
sixapart
|
movable_type
|
Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5084
|
2024-11-21 10:33 |
2012-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295119
|
- |
|
dotclear
|
dotclear
|
Unrestricted file upload vulnerability in inc/swf/swfupload.swf in Dotclear 2.3.1 and 2.4.2 allows remote attackers to execute arbitrary code by uploading a file with an executable PHP extension, the…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5083
|
2024-11-21 10:33 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295120
|
- |
|
s2member
|
s2member
|
Cross-site scripting (XSS) vulnerability in the s2Member Pro plugin before 111220 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s2member_pro_authnet_checkout[co…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5082
|
2024-11-21 10:33 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
