|
295971
|
- |
|
tuttophp
|
happy_chat
|
Cross-site scripting (XSS) vulnerability in profilo.php in Happy Chat 1.0 allows remote attackers to inject arbitrary web script or HTML via the nick parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5296
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295972
|
- |
|
gogago
|
gogago_youtube_video_converter
|
Buffer overflow in the Download method in a certain ActiveX control in MDIEEx.dll in Gogago YouTube Video Converter 1.1.6 allows remote attackers to execute arbitrary code via a long argument.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5295
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295973
|
- |
|
kofax
|
kofax_e-transactions_sender_sendbox
|
The SaveMessage method in the LEADeMail.LEADSmtp.20 ActiveX control in LTCML14n.dll 14.0.0.34 in Kofax e-Transactions Sender Sendbox 2.5.0.933 allows remote attackers to write to arbitrary files via …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5294
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295974
|
- |
|
threediffy
|
threedify_designer
|
The cmdSave method in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll in ThreeDify Designer 5.0.2 allows remote attackers to write to arbitrary files via a pathname in the argume…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5293
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295975
|
- |
|
easewe_software
|
easewe_ftp_ocx_activex_control
|
The EaseWeFtp.FtpLibrary ActiveX control in EaseWeFtp.ocx in Easewe FTP OCX 4.5.0.9 does not restrict access to certain methods, which allows remote attackers to execute arbitrary files via a pathnam…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5292
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295976
|
- |
|
ashampoo_gmbh_\&_co.
|
ashampoo_3d_cad_professional_3
|
The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx in Ashampoo 3D CAD Professional 3.x before 3.0.2 allows remote attackers to write to arbitrary files via a pathname i…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5291
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295977
|
- |
|
idrive_inc
|
idrive_online_backup
|
The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100_EDA1811C.ocx in IDrive Online Backup 3.4.0 allows remote attackers to write to arbitrary files via a pathname in th…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5290
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295978
|
- |
|
diego_uscanga
|
atube_catcher
|
The SaveDecrypted method in the ChilkatCrypt2.ChilkatOmaDrm.1 ActiveX control in ChilkatCrypt2.dll in aTube Catcher 2.3.570 allows remote attackers to write to arbitrary files via a pathname in the a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5289
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295979
|
- |
|
threedify
|
threedify_designer
|
Multiple buffer overflows in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll in ThreeDify Designer 5.0.2 allow remote attackers to execute arbitrary code via a long argument to t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5288
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295980
|
- |
|
hesk
|
hesk
|
Multiple cross-site scripting (XSS) vulnerabilities in HESK before 2.4.1 allow remote attackers to inject arbitrary web script or HTML via the (1) hesk_settings[tmp_title] or (2) hesklang[ENCODING] p…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5287
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
