|
296551
|
- |
|
wireshark
|
wireshark
|
The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of servic…
|
CWE-399
Resource Management Errors
|
CVE-2011-3266
|
2024-11-21 10:30 |
2011-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296552
|
- |
|
zabbix
|
zabbix
|
popup.php in Zabbix before 1.8.7 allows remote attackers to read the contents of arbitrary database tables via a modified srctbl parameter.
|
CWE-200
Information Exposure
|
CVE-2011-3265
|
2024-11-21 10:30 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296553
|
- |
|
zabbix
|
zabbix
|
Zabbix before 1.8.6 allows remote attackers to obtain sensitive information via an invalid srcfld2 parameter to popup.php, which reveals the installation path in an error message.
|
CWE-200
Information Exposure
|
CVE-2011-3264
|
2024-11-21 10:30 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296554
|
- |
|
zabbix
|
zabbix
|
zabbix_agentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service (CPU consumption) by executing the vfs.file.cksum command for a special dev…
|
CWE-399
Resource Management Errors
|
CVE-2011-3263
|
2024-11-21 10:30 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296555
|
- |
|
citrix
|
xen
|
tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allows local users to cause a denial of service (management software infinite loop and management domain resource consumption) via uns…
|
CWE-399
Resource Management Errors
|
CVE-2011-3262
|
2024-11-21 10:30 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296556
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient policy enforcement in V8 in Google Chrome prior to 14.0.0.0 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
|
CWE-200
Information Exposure
|
CVE-2011-2863
|
2024-11-21 10:29 |
2020-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296557
|
6.1 |
MEDIUM
Network
|
jcow
|
jcow_cms
|
A Cross-Site Scripting (XSS) vulnerability exists in the g parameter to index.php in Jcow CMS 4.2 and earlier.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3202
|
2024-11-21 10:29 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296558
|
6.1 |
MEDIUM
Network
|
concretecms
|
concrete_cms
|
A Cross-Site Scripting (XSS) vulnerability exists in the rcID parameter in Concrete CMS 5.4.1.1 and earlier.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3183
|
2024-11-21 10:29 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296559
|
8.8 |
HIGH
Network
|
websitebaker
|
websitebaker
|
A Cross Site Request Forgery (CSRF) vulnerability exists in the administrator functions in WebsiteBaker 2.8.1 and earlier due to inadequate confirmation for sensitive transactions.
|
CWE-352
Origin Validation Error
|
CVE-2011-2934
|
2024-11-21 10:29 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296560
|
7.2 |
HIGH
Network
|
websitebaker
|
websitebaker
|
An Arbitrary File Upload vulnerability exists in admin/media/upload.php in WebsiteBaker 2.8.1 and earlier due to a failure to restrict uploaded files with .htaccess, .php4, .php5, and .phtl extension…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2011-2933
|
2024-11-21 10:29 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
