|
296861
|
- |
|
lars_hjemli
|
cgit
|
Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the filen…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2711
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296862
|
- |
|
google
|
chrome
|
The Basic Authentication dialog implementation in Google Chrome before 13.0.782.107 does not properly handle strings, which might make it easier for remote attackers to capture credentials via a craf…
|
CWE-287
Improper Authentication
|
CVE-2011-2361
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296863
|
- |
|
google
|
chrome
|
Google Chrome before 13.0.782.107 does not ensure that the user is prompted before download of a dangerous file, which makes it easier for remote attackers to bypass intended content restrictions via…
|
NVD-CWE-noinfo
|
CVE-2011-2360
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296864
|
- |
|
google
apple
debian
|
chrome
iphone_os
itunes
safari
debian_linux
|
Google Chrome before 13.0.782.107 does not properly track line boxes during rendering, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown…
|
CWE-20
Improper Input Validation
|
CVE-2011-2359
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296865
|
- |
|
google
|
chrome
|
Google Chrome before 13.0.782.107 does not ensure that extension installations are confirmed by a browser dialog, which makes it easier for remote attackers to modify the product's functionality via …
|
CWE-20
Improper Input Validation
|
CVE-2011-2358
|
2024-11-21 10:28 |
2011-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296866
|
- |
|
phpmyadmin
|
phpmyadmin
|
libraries/auth/swekey/swekey.auth.lib.php in phpMyAdmin 3.x before 3.3.10.3 and 3.4.x before 3.4.3.2 does not properly manage sessions associated with Swekey authentication, which allows remote attac…
|
CWE-20
Improper Input Validation
|
CVE-2011-2719
|
2024-11-21 10:28 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296867
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple directory traversal vulnerabilities in the relational schema implementation in phpMyAdmin 3.4.x before 3.4.3.2 allow remote authenticated users to include and execute arbitrary local files v…
|
CWE-22
Path Traversal
|
CVE-2011-2718
|
2024-11-21 10:28 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296868
|
- |
|
osgeo
umn
|
mapserver
|
Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7 allows remote attackers to execute arbitrary code via vectors related to OGC filter encoding.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2704
|
2024-11-21 10:28 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296869
|
- |
|
osgeo
umn
|
mapserver
|
Multiple SQL injection vulnerabilities in MapServer before 4.10.7, 5.x before 5.6.7, and 6.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via vectors related to (1) OGC filte…
|
CWE-89
SQL Injection
|
CVE-2011-2703
|
2024-11-21 10:28 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296870
|
- |
|
phpmyadmin
|
phpmyadmin
|
Directory traversal vulnerability in sql.php in phpMyAdmin 3.4.x before 3.4.3.2, when configuration storage is enabled, allows remote attackers to include and execute arbitrary local files via direct…
|
CWE-22
Path Traversal
|
CVE-2011-2643
|
2024-11-21 10:28 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
