|
293721
|
- |
|
marcel_brinkkemper
|
lazyest-backup
|
Cross-site scripting (XSS) vulnerability in lazyest-backup.php in the Lazyest Backup plugin before 0.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xml_or_al…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5264
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293722
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in RetrieveMailExamples in SAP NetWeaver 7.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the server parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5263
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293723
|
- |
|
sonicwall
|
aventail_sra_ex9000
aventail_sra_ex7000
aventail_sra_ex6000
aventail_sra_ex_virtual_appliance
|
SQL injection vulnerability in prodpage.cfm in SonicWALL Aventail allows remote attackers to execute arbitrary SQL commands via the CategoryID parameter.
|
CWE-89
SQL Injection
|
CVE-2011-5262
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293724
|
- |
|
axis
|
m10_series_network_cameras_firmware
m1054_network_camera
|
Cross-site scripting (XSS) vulnerability in serverreport.cgi in Axis M10 Series Network Cameras M1054 firmware 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2011-5261
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293725
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in SAP/BW/DOC/METADATA in SAP NetWeaver allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5260
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293726
|
- |
|
orangehrm
|
orangehrm
|
SQL injection vulnerability in lib/controllers/CentralController.php in OrangeHRM before 2.6.11.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2011-5259
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293727
|
- |
|
orangehrm
|
orangehrm
|
Multiple cross-site scripting (XSS) vulnerabilities in OrangeHRM before 2.6.11.2 allow remote attackers to inject arbitrary web script or HTML via the (1) uniqcode or (2) isAdmin parameter to index.p…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5258
|
2024-11-21 10:34 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293728
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_web_platform
jboss_enterprise_brms_platform
|
The NonManagedConnectionFactory in JBoss Enterprise Application Platform (EAP) 5.1.2 and 5.2.0, Web Platform (EWP) 5.1.2 and 5.2.0, and BRMS Platform before 5.3.1 logs the username and password in cl…
|
CWE-255
Credentials Management
|
CVE-2012-0034
|
2024-11-21 10:34 |
2013-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293729
|
- |
|
ibm
|
infosphere_information_server
infosphere_metadata_workbench
|
InfoSphere Metadata Workbench (MWB) 8.1 through 8.7 in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 does not properly restrict use of the troubleshooting feature, which allows remot…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0205
|
2024-11-21 10:34 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293730
|
- |
|
ibm
|
infosphere_import_export_manager
infosphere_information_server
infosphere_information_server_metabrokers_\&_bridges
|
Untrusted search path vulnerability in InfoSphere Import Export Manager 8.1 through 9.1 in InfoSphere Information Server MetaBrokers & Bridges (MBB) in IBM InfoSphere Information Server 8.1, 8.5 befo…
|
NVD-CWE-Other
|
CVE-2012-0204
|
2024-11-21 10:34 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
