|
304851
|
- |
|
taskfreak
|
taskfreak\!
|
Multiple cross-site scripting (XSS) vulnerabilities in include/html/header.php in TaskFreak! 0.6.4 allow remote attackers to inject arbitrary web script or HTML via the (1) sContext, (2) sort, (3) di…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1062
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304852
|
- |
|
webmastersite
|
wsn_guest
|
SQL injection vulnerability in memberlist.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the time parameter.
|
CWE-89
SQL Injection
|
CVE-2011-1061
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304853
|
- |
|
webmastersite
|
wsn_guest
|
SQL injection vulnerability in the member function in classes/member.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the wsnuser cookie to index.php.
|
CWE-89
SQL Injection
|
CVE-2011-1060
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304854
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in WebCore in WebKit before r77705, as used in Google Chrome before 11.0.672.2 and other products, allows user-assisted remote attackers to cause a denial of service (app…
|
CWE-416
Use After Free
|
CVE-2011-1059
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304855
|
- |
|
ibm
|
lotus_sametime
|
Multiple cross-site scripting (XSS) vulnerabilities in stconf.nsf in the server in IBM Lotus Sametime 8.0.1 allow remote attackers to inject arbitrary web script or HTML via (1) the messageString par…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1038
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304856
|
- |
|
avahi
redhat
fedoraproject
canonical
debian
|
avahi
enterprise_linux
fedora
ubuntu_linux
debian_linux
|
avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: …
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2011-1002
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304857
|
- |
|
moinmo
|
moinmoin
|
Cross-site scripting (XSS) vulnerability in the reStructuredText (rst) parser in parser/text_rst.py in MoinMoin before 1.9.3, when docutils is installed or when "format rst" is set, allows remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1058
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304858
|
- |
|
metasploit
|
metasploit_framework
|
The installer for Metasploit Framework 3.5.1, when running on Windows, uses weak inherited permissions for the Metasploit installation directory, which allows local users to gain privileges by replac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1056
|
2024-11-21 10:25 |
2011-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304859
|
- |
|
lingxia273
|
lingxia_i.c.e_cms
|
SQL injection vulnerability in api/ice_media.cfc in Lingxia I.C.E CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the session.user_id parameter to media.cfm.
|
CWE-89
SQL Injection
|
CVE-2011-1055
|
2024-11-21 10:25 |
2011-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304860
|
- |
|
hex-rays
|
ida
|
Unspecified vulnerability in the PEF input file loader in Hex-Rays IDA Pro 5.7 and 6.0 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2011-1054
|
2024-11-21 10:25 |
2011-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
