|
297051
|
- |
|
parallels
|
parallels_plesk_small_business_panel
|
Parallels Plesk Small Business Panel 10.2.0 does not properly validate string data that is intended for storage in an XML document, which allows remote attackers to cause a denial of service (parsing…
|
CWE-20
Improper Input Validation
|
CVE-2011-4755
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297052
|
- |
|
parallels
|
parallels_plesk_small_business_panel
|
Multiple cross-site scripting (XSS) vulnerabilities in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as …
|
CWE-79
Cross-site Scripting
|
CVE-2011-4754
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297053
|
- |
|
parallels
|
parallels_plesk_small_business_panel
|
Multiple SQL injection vulnerabilities in Parallels Plesk Small Business Panel 10.2.0 allow remote attackers to execute arbitrary SQL commands via crafted input to a PHP script, as demonstrated by do…
|
CWE-89
SQL Injection
|
CVE-2011-4753
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297054
|
- |
|
smartertools
|
smarterstats
|
SmarterTools SmarterStats 6.2.4100 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by leveraging an interpretation conflic…
|
NVD-CWE-Other
|
CVE-2011-4752
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297055
|
- |
|
smartertools
|
smarterstats
|
SmarterTools SmarterStats 6.2.4100 generates web pages containing external links in response to GET requests with query strings for frmGettingStarted.aspx, which makes it easier for remote attackers …
|
CWE-200
Information Exposure
|
CVE-2011-4751
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297056
|
- |
|
smartertools
|
smarterstats
|
Multiple cross-site scripting (XSS) vulnerabilities in SmarterTools SmarterStats 6.2.4100 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstra…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4750
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297057
|
- |
|
parallels
|
parallels_plesk_panel
|
The billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass…
|
CWE-255
Credentials Management
|
CVE-2011-4749
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297058
|
- |
|
parallels
|
parallels_plesk_panel
|
The billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 has web pages containing e-mail addresses that are not intended for correspondence about the local application deployment, which…
|
CWE-200
Information Exposure
|
CVE-2011-4748
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297059
|
- |
|
parallels
|
parallels_plesk_panel
|
The billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 does not prevent the use of weak ciphers for SSL sessions, which makes it easier for remote attackers to defeat cryptographic pr…
|
CWE-310
Cryptographic Issues
|
CVE-2011-4747
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297060
|
- |
|
parallels
|
parallels_plesk_panel
|
The billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 does not disable the SSL 2.0 protocol, which makes it easier for remote attackers to conduct spoofing attacks by leveraging prot…
|
CWE-310
Cryptographic Issues
|
CVE-2011-4746
|
2024-11-21 10:32 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
