|
294881
|
- |
|
emc
centos
|
documentum_content_server
centos
|
Unspecified vulnerability in EMC Documentum Content Server 6.0, 6.5 before SP2 P02, 6.5 SP3 before SP3 P02, and 6.6 before P02 allows local users to obtain "highest super user privileges" by leveragi…
|
NVD-CWE-noinfo
|
CVE-2011-4144
|
2024-11-21 10:31 |
2012-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294882
|
- |
|
sitracker
|
support_incident_tracker
|
Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then…
|
NVD-CWE-Other
|
CVE-2011-3833
|
2024-11-21 10:31 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294883
|
- |
|
sitracker
|
support_incident_tracker
|
Eval injection vulnerability in config.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated administrators to execute arbitrary PHP code via the application_name parameter in a…
|
CWE-94
Code Injection
|
CVE-2011-3832
|
2024-11-21 10:31 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294884
|
- |
|
sitracker
|
support_incident_tracker
|
SQL injection vulnerability in incident_attachments.php in Support Incident Tracker (aka SiT!) 3.65 allows remote attackers to execute arbitrary SQL commands via an uploaded file with a crafted file …
|
CWE-89
SQL Injection
|
CVE-2011-3831
|
2024-11-21 10:31 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294885
|
- |
|
sitracker
|
support_incident_tracker
|
Cross-site scripting (XSS) vulnerability in search.php in Support Incident Tracker (aka SiT!) 3.65 allows remote attackers to inject arbitrary web script or HTML via the search_string parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3830
|
2024-11-21 10:31 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294886
|
- |
|
sitracker
|
support_incident_tracker
|
ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error me…
|
CWE-200
Information Exposure
|
CVE-2011-3829
|
2024-11-21 10:31 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294887
|
- |
|
linux
suse
|
linux_kernel
linux_enterprise_server
|
The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux kernel 2.6 allows local users to cause a denial of service (assertion error and kernel oops) via an e…
|
CWE-20
Improper Input Validation
|
CVE-2011-4132
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294888
|
- |
|
linux
|
linux_kernel
|
The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a us…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4110
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294889
|
- |
|
linux
|
linux_kernel
|
Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled, allows local users to cause a denial of service (memory corrup…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4077
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294890
|
- |
|
google
|
android
|
Stack-based buffer overflow in libsysutils in Android 2.2.x through 2.2.2 and 2.3.x through 2.3.6 allows user-assisted remote attackers to execute arbitrary code via an application that calls the Fra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3874
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
