|
298191
|
- |
|
maradns
|
maradns
|
The compress_add_dlabel_points function in dns/Compress.c in MaraDNS 1.4.03, 1.4.05, and probably other versions allows remote attackers to cause a denial of service (segmentation fault) and possibly…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0520
|
2024-11-21 10:24 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298192
|
- |
|
anserv
|
php_low_bids
|
SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote attackers to execute arbitrary SQL commands via the cat parameter.
|
CWE-89
SQL Injection
|
CVE-2011-0646
|
2024-11-21 10:24 |
2011-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298193
|
- |
|
phpcms
|
phpcms_2008
|
SQL injection vulnerability in data.php in PHPCMS 2008 V2 allows remote attackers to execute arbitrary SQL commands via the where_time parameter in a get action.
|
CWE-89
SQL Injection
|
CVE-2011-0645
|
2024-11-21 10:24 |
2011-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298194
|
- |
|
phpcms
|
phpcms_2008
|
SQL injection vulnerability in include/admin/model_field.class.php in PHPCMS 2008 V2 allows remote attackers to execute arbitrary SQL commands via the modelid parameter to flash_upload.php.
|
CWE-89
SQL Injection
|
CVE-2011-0644
|
2024-11-21 10:24 |
2011-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298195
|
- |
|
phplinkdirectory
|
php_link_directory
|
Cross-site request forgery (CSRF) vulnerability in admin/conf_users_edit.php in PHP Link Directory (phpLD) 4.1.0 allows remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2011-0643
|
2024-11-21 10:24 |
2011-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298196
|
- |
|
network-13
|
n-13_news
|
Cross-site request forgery (CSRF) vulnerability in news/admin.php in N-13 News 3.4, 3.7, and 4.0 allows remote attackers to hijack the authentication of administrators for requests that create new us…
|
CWE-352
Origin Validation Error
|
CVE-2011-0642
|
2024-11-21 10:24 |
2011-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298197
|
- |
|
heart5
|
statpresscn
|
Multiple cross-site scripting (XSS) vulnerabilities in wp-admin/admin.php in the StatPressCN plugin 1.9.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) what1…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0641
|
2024-11-21 10:24 |
2011-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298198
|
- |
|
udev_project
|
udev
|
The default configuration of udev on Linux does not warn the user before enabling additional Human Interface Device (HID) functionality over USB, which allows user-assisted attackers to execute arbit…
|
NVD-CWE-noinfo
|
CVE-2011-0640
|
2024-11-21 10:24 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298199
|
- |
|
apple
|
mac_os_x
|
Apple Mac OS X does not properly warn the user before enabling additional Human Interface Device (HID) functionality over USB, which allows user-assisted attackers to execute arbitrary programs via c…
|
CWE-16
Configuration
|
CVE-2011-0639
|
2024-11-21 10:24 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298200
|
- |
|
microsoft
|
windows
|
Microsoft Windows does not properly warn the user before enabling additional Human Interface Device (HID) functionality over USB, which allows user-assisted attackers to execute arbitrary programs vi…
|
CWE-16
Configuration
|
CVE-2011-0638
|
2024-11-21 10:24 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
