|
295241
|
- |
|
nullsoft
|
winamp
|
Heap-based buffer overflow in the in_mod.dll plugin in Winamp before 5.623 allows remote attackers to execute arbitrary code via crafted song message data in an Impulse Tracker (IT) file. NOTE: some…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4857
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295242
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by leve…
|
NVD-CWE-Other
|
CVE-2011-4856
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295243
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to have an unspecified i…
|
NVD-CWE-Other
|
CVE-2011-4855
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295244
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 does not ensure that Content-Type HTTP headers match the corresponding Content-Type data in HTML META elements, which might allow re…
|
NVD-CWE-Other
|
CVE-2011-4854
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295245
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 includes an RFC 1918 IP address within a web page, which allows remote attackers to obtain potentially sensitive information by read…
|
CWE-200
Information Exposure
|
CVE-2011-4853
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295246
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 generates web pages containing external links in response to GET requests with query strings for enterprise/mobile-monitor/ and cert…
|
CWE-200
Information Exposure
|
CVE-2011-4852
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295247
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass aut…
|
CWE-255
Credentials Management
|
CVE-2011-4851
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295248
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potenti…
|
CWE-200
Information Exposure
|
CVE-2011-4850
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295249
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by …
|
CWE-200
Information Exposure
|
CVE-2011-4849
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295250
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 includes a submitted password within an HTTP response body, which allows remote attackers to obtain sensitive information by sniffin…
|
CWE-200
Information Exposure
|
CVE-2011-4848
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
