|
300911
|
- |
|
e107
|
e107
|
Cross-site scripting (XSS) vulnerability in e107 0.7.22 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-0457
|
2024-11-21 10:24 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300912
|
- |
|
wordpress
|
wordpress
|
wp-admin/async-upload.php in the media uploader in WordPress before 3.0.5 allows remote authenticated users to read (1) draft posts or (2) private posts via a modified attachment_id parameter.
|
CWE-200
Information Exposure
|
CVE-2011-0701
|
2024-11-21 10:24 |
2011-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300913
|
- |
|
wordpress
|
wordpress
|
Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.0.5 allow remote authenticated users to inject arbitrary web script or HTML via vectors related to (1) the Quick/Bulk Edit ti…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0700
|
2024-11-21 10:24 |
2011-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300914
|
- |
|
apache
|
subversion
|
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) …
|
NVD-CWE-Other
|
CVE-2011-0715
|
2024-11-21 10:24 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300915
|
- |
|
otrs
|
otrs
|
webscript.pl in Open Ticket Request System (OTRS) 2.3.4 and earlier allows remote attackers to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability."
|
CWE-78
OS Command
|
CVE-2011-0456
|
2024-11-21 10:24 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300916
|
- |
|
novell
|
vibe_onprem
|
Unspecified vulnerability in Novell Vibe OnPrem 3.0 before Hot Patch 1 allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-0464
|
2024-11-21 10:24 |
2011-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300917
|
- |
|
wireshark
|
wireshark
|
Heap-based buffer overflow in wiretap/dct3trace.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) or possibly have u…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0713
|
2024-11-21 10:24 |
2011-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300918
|
- |
|
thingslabo
|
things_bbs
bbs_thread
|
Cross-site scripting (XSS) vulnerability in Things BBS before 2.0.3 and BBS Thread before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-0455
|
2024-11-21 10:24 |
2011-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300919
|
- |
|
vsftpd_project
canonical
fedoraproject
debian
suse
opensuse
|
vsftpd
ubuntu_linux
fedora
debian_linux
linux_enterprise_server
opensuse
|
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob ex…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2011-0762
|
2024-11-21 10:24 |
2011-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300920
|
- |
|
samba
|
samba
|
Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 does not perform range checks for file descriptors before use of the FD_SET macro, which allows remote attackers to cause a denial…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0719
|
2024-11-21 10:24 |
2011-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
