|
295481
|
- |
|
craig_barratt
|
backuppc
|
Cross-site scripting (XSS) vulnerability in RestoreFile.pm in BackupPC 3.1.0, 3.2.1, and possibly other earlier versions allows remote attackers to inject arbitrary web script or HTML via the share p…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5081
|
2024-11-21 10:33 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295482
|
- |
|
craig_barratt
|
backuppc
|
Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter i…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4923
|
2024-11-21 10:33 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295483
|
- |
|
juergen_furrer
|
jftcaforms
|
Cross-site scripting (XSS) vulnerability in lib/class.tx_jftcaforms_tceFunc.php in the Additional TCA Forms (jftcaforms) extension before 0.2.1 for TYPO3 allows remote attackers to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5080
|
2024-11-21 10:33 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295484
|
- |
|
netcreators
|
irfaq
|
Open redirect vulnerability in the Modern FAQ (irfaq) extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing a…
|
CWE-20
Improper Input Validation
|
CVE-2011-5079
|
2024-11-21 10:33 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295485
|
- |
|
sybase
|
m-business_anywhere
|
The web administration interface in the server in Sybase M-Business Anywhere 6.7 before ESD# 3 and 7.0 before ESD# 7 does not require admin authentication for unspecified scripts, which allows remote…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5078
|
2024-11-21 10:33 |
2012-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295486
|
- |
|
hudong
|
hdwiki
|
Unrestricted file upload vulnerability in attachement.php in HDWiki 5.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a dir…
|
NVD-CWE-Other
|
CVE-2011-5077
|
2024-11-21 10:33 |
2012-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295487
|
- |
|
hudong
|
hdwiki
|
SQL injection vulnerability in model/comment.class.php in HDWiki 5.0, 5.1, and possibly other versions allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to index.php. NOTE:…
|
CWE-89
SQL Injection
|
CVE-2011-5076
|
2024-11-21 10:33 |
2012-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295488
|
- |
|
htc
|
glacier
sensation_z710e
evo_3d
desire_s
desire_hd
sensation_4g
thunderbolt_4g
evo_4g
droid_incredible
|
Multiple HTC Android devices including Desire HD FRG83D and GRI40, Glacier FRG83, Droid Incredible FRF91, Thunderbolt 4G FRG83D, Sensation Z710e GRI40, Sensation 4G GRI40, Desire S GRI40, EVO 3D GRI4…
|
CWE-200
Information Exposure
|
CVE-2011-4872
|
2024-11-21 10:33 |
2012-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295489
|
- |
|
siemens
|
wincc_flexible
wincc
simatic_hmi_panels
wincc_runtime_advanced
wincc_flexible_runtime
|
miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SI…
|
CWE-20
Improper Input Validation
|
CVE-2011-4879
|
2024-11-21 10:33 |
2012-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295490
|
- |
|
siemens
|
wincc_flexible
wincc
simatic_hmi_panels
wincc_runtime_advanced
wincc_flexible_runtime
|
Directory traversal vulnerability in miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP,…
|
CWE-22
Path Traversal
|
CVE-2011-4878
|
2024-11-21 10:33 |
2012-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
