|
294391
|
- |
|
whmcs
|
whmcompletesolution
|
functions.php in WHMCompleteSolution (WHMCS) 4.0.x through 5.0.x allows remote attackers to trigger arbitrary code execution in the Smarty templating system by submitting a crafted ticket, related to…
|
CWE-94
Code Injection
|
CVE-2011-5061
|
2024-11-21 10:33 |
2012-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294392
|
- |
|
roderich_schupp
|
par-packer_module
|
The par_mktmpdir function in the PAR module before 1.003 for Perl creates temporary files in a directory with a predictable name without verifying ownership and permissions of this directory, which a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5060
|
2024-11-21 10:33 |
2012-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294393
|
- |
|
clusterresources
cluster_resources
|
torque_resource_manager
|
Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user account…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4925
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294394
|
- |
|
hp
|
diagnostics
|
Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet. NOTE: it …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4789
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294395
|
- |
|
hp
|
storageworks_p2000_g3_msa_fc\/iscsi_dual_combo_controller_lff_array_system
storageworks_p2000_g3_msa_fibre_channel_dual_controller_lff_array_system
storageworks_p2000_g3_msa_fibre_channel_dual_…
|
Absolute path traversal vulnerability in the web interface on HP StorageWorks P2000 G3 MSA array systems allows remote attackers to read arbitrary files via a pathname in the URI.
|
CWE-22
Path Traversal
|
CVE-2011-4788
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294396
|
- |
|
hp
|
easy_printer_care_software
|
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program,…
|
CWE-94
Code Injection
|
CVE-2011-4787
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294397
|
- |
|
hp
|
easy_printer_care_software
|
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program,…
|
CWE-94
Code Injection
|
CVE-2011-4786
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294398
|
- |
|
finaldraft
|
finaldraft
|
Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the pr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5059
|
2024-11-21 10:33 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294399
|
- |
|
3ssoftware
|
codesys
|
The CmbWebserver.dll module of the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to create arbitrary directories under the web root by specifying a non-existent directory usin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5058
|
2024-11-21 10:33 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294400
|
- |
|
apache
|
struts
|
Apache Struts 2.3.1.2 and earlier, 2.3.19-2.3.23, provides interfaces that do not properly restrict access to collections such as the session and request collections, which might allow remote attacke…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5057
|
2024-11-21 10:33 |
2012-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
