|
296921
|
6.5 |
MEDIUM
Network
|
libpng
fedoraproject
debian
|
libpng
fedora
debian_linux
|
The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an emp…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-2691
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296922
|
8.8 |
HIGH
Network
|
libpng
fedoraproject
debian
canonical
|
libpng
fedora
debian_linux
ubuntu_linux
|
Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set…
|
CWE-120
Classic Buffer Overflow
|
CVE-2011-2690
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296923
|
6.5 |
MEDIUM
Network
|
libpng
fedoraproject
debian
canonical
|
libpng
fedora
debian_linux
ubuntu_linux
|
The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (appli…
|
CWE-125
Out-of-bounds Read
|
CVE-2011-2501
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296924
|
- |
|
apache
|
tomcat
|
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allow…
|
CWE-20
Improper Input Validation
|
CVE-2011-2526
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296925
|
- |
|
dokuwiki
|
dokuwiki
|
Cross-site scripting (XSS) vulnerability in the RSS embedding feature in DokuWiki before 2011-05-25a Rincewind allows remote attackers to inject arbitrary web script or HTML via a link.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2510
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296926
|
- |
|
phpmyadmin
|
phpmyadmin
|
Directory traversal vulnerability in libraries/display_tbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote aut…
|
CWE-22
Path Traversal
|
CVE-2011-2508
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296927
|
- |
|
phpmyadmin
|
phpmyadmin
|
libraries/server_synchronize.lib.php in the Synchronize implementation in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does not properly quote regular expressions, which allows remote auth…
|
CWE-94
Code Injection
|
CVE-2011-2507
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296928
|
- |
|
phpmyadmin
|
phpmyadmin
|
setup/lib/ConfigGenerator.class.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does not properly restrict the presence of comment closing delimiters, which allows remote attackers to …
|
CWE-94
Code Injection
|
CVE-2011-2506
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296929
|
- |
|
phpmyadmin
|
phpmyadmin
|
libraries/auth/swekey/swekey.auth.lib.php in the Swekey authentication feature in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 assigns values to arbitrary parameters referenced in the quer…
|
CWE-94
Code Injection
|
CVE-2011-2505
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296930
|
- |
|
apache
shibboleth
|
xml_security_for_c\+\+
shibboleth-sp
|
Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of servic…
|
CWE-189
Numeric Errors
|
CVE-2011-2516
|
2024-11-21 10:28 |
2011-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
