|
304951
|
- |
|
feh_project
|
feh
|
The feh_unique_filename function in utils.c in feh before 1.11.2 might allow local users to overwrite arbitrary files via a symlink attack on a /tmp/feh_ temporary file.
|
CWE-59
Link Following
|
CVE-2011-0702
|
2024-11-21 10:24 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304952
|
- |
|
djangoproject
|
django
|
Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session …
|
CWE-22
Path Traversal
|
CVE-2011-0698
|
2024-11-21 10:24 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304953
|
- |
|
djangoproject
|
django
|
Cross-site scripting (XSS) vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 might allow remote attackers to inject arbitrary web script or HTML via a filename associated with a file …
|
CWE-79
Cross-site Scripting
|
CVE-2011-0697
|
2024-11-21 10:24 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304954
|
- |
|
djangoproject
|
django
|
Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site req…
|
CWE-352
Origin Validation Error
|
CVE-2011-0696
|
2024-11-21 10:24 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304955
|
- |
|
rubyonrails
|
rails
|
Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and 3.x before 3.0.4, does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers…
|
CWE-352
Origin Validation Error
|
CVE-2011-0447
|
2024-11-21 10:24 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304956
|
- |
|
ca
|
etrust_secure_content_manager
gateway_security
|
The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a craft…
|
CWE-189
Numeric Errors
|
CVE-2011-0758
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304957
|
- |
|
emc
|
replication_manager
networker_module
|
The irccd.exe service in EMC Replication Manager Client before 5.3 and NetWorker Module for Microsoft Applications 2.1.x and 2.2.x allows remote attackers to execute arbitrary commands via the RunPro…
|
CWE-20
Improper Input Validation
|
CVE-2011-0647
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304958
|
- |
|
adobe
|
acrobat_reader
acrobat
|
Stack-based buffer overflow in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0606
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304959
|
- |
|
adobe
|
acrobat_reader
acrobat
|
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecif…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0605
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304960
|
- |
|
adobe
|
acrobat_reader
acrobat
|
Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to inject arbitrary web…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0604
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
