|
295291
|
- |
|
apprain
|
apprain
|
Cross-site scripting (XSS) vulnerability in the Search module (quickstart/search) in appRain CMF 0.1.5 allows remote attackers to inject arbitrary web script or HTML via the ss parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5228
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295292
|
- |
|
enterasys
|
netsight
|
Stack-based buffer overflow in the Syslog service (nssyslogd.exe) in Enterasys Network Management Suite (NMS) before 4.1.0.80 allows remote attackers to execute arbitrary code via a long PRIO field i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5227
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295293
|
- |
|
trioniclabs
|
sentinel
|
Cross-site request forgery (CSRF) vulnerability in wordpress_sentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to hijack the authentication of an administrator for reque…
|
CWE-352
Origin Validation Error
|
CVE-2011-5226
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295294
|
- |
|
trioniclabs
|
sentinel
|
Cross-site scripting (XSS) vulnerability in wordpress_sentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5225
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295295
|
- |
|
trioniclabs
|
sentinel
|
SQL injection vulnerability in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2011-5224
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295296
|
- |
|
cacti
|
cacti
|
Cross-site request forgery (CSRF) vulnerability in logout.php in Cacti before 0.8.7i allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5223
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295297
|
- |
|
scripte24shop
|
php_flirt-projekt
|
SQL injection vulnerability in rub2_w.php in PHP Flirt-Projekt 4.8 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the rub parameter.
|
CWE-89
SQL Injection
|
CVE-2011-5222
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295298
|
- |
|
websvn
|
websvn
|
Cross-site scripting (XSS) vulnerability in the getLog function in svnlook.php in WebSVN before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the path parameter to (1) comp…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5221
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295299
|
- |
|
cristopher_shi
|
php-scms
|
Cross-site scripting (XSS) vulnerability in templates/default/Admin/Login.html in PHP-SCMS 1.6.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter to i…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5220
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295300
|
- |
|
mpdf1
|
mpdf
|
Directory traversal vulnerability in examples/show_code.php in mPDF 5.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
|
CWE-22
Path Traversal
|
CVE-2011-5219
|
2024-11-21 10:33 |
2012-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
