|
302791
|
- |
|
google
htc
|
android
evo_3d
evo_4g
thunderbolt
|
A certain HTC update for Android 2.3.4 build GRJ22, when the Sense interface is used on the HTC EVO 3D, EVO 4G, ThunderBolt, and unspecified other devices, provides the HtcLoggers.apk application, wh…
|
CWE-200
Information Exposure
|
CVE-2011-3975
|
2024-11-21 10:31 |
2011-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302792
|
- |
|
ffmpeg
|
ffmpeg
|
Integer signedness error in the decode_residual_inter function in cavsdec.c in libavcodec in FFmpeg before 0.7.4 and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (incorrect…
|
CWE-189
Numeric Errors
|
CVE-2011-3974
|
2024-11-21 10:31 |
2011-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302793
|
- |
|
ffmpeg
|
ffmpeg
|
cavsdec.c in libavcodec in FFmpeg before 0.7.4 and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (incorrect write operation and application crash) via an invalid bitstream i…
|
CWE-399
Resource Management Errors
|
CVE-2011-3973
|
2024-11-21 10:31 |
2011-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302794
|
- |
|
mozilla
|
firefox
seamonkey
|
Mozilla Firefox before 7.0 and SeaMonkey before 2.4 do not properly restrict availability of motion data events, which makes it easier for remote attackers to read keystrokes by leveraging JavaScript…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3866
|
2024-11-21 10:31 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302795
|
- |
|
ulyssesonline
|
black-letterhead
|
Cross-site scripting (XSS) vulnerability in the Black-LetterHead theme before 1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3865
|
2024-11-21 10:31 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302796
|
- |
|
somadesign
|
the_erudite
|
Cross-site scripting (XSS) vulnerability in the The Erudite theme before 2.7.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cpage parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3864
|
2024-11-21 10:31 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302797
|
- |
|
post-scriptum
|
redline
|
Cross-site scripting (XSS) vulnerability in the RedLine theme before 1.66 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3863
|
2024-11-21 10:31 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302798
|
- |
|
adazing
|
morning_coffee
|
Cross-site scripting (XSS) vulnerability in the Morning Coffee theme before 3.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3862
|
2024-11-21 10:31 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302799
|
- |
|
webminimalist
|
web_minimalist_200901
|
Cross-site scripting (XSS) vulnerability in the Web Minimalist 200901 theme before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3861
|
2024-11-21 10:31 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302800
|
- |
|
onedesigns
|
cover_wp
|
Cross-site scripting (XSS) vulnerability in the Cover WP theme before 1.6.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3860
|
2024-11-21 10:31 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
