|
295851
|
- |
|
wellintech
|
kingview
|
Heap-based buffer overflow in nettransdll.dll in HistorySvr.exe (aka HistoryServer.exe) in WellinTech KingView 6.53 and 65.30.2010.18018 allows remote attackers to execute arbitrary code via a crafte…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4536
|
2024-11-21 10:32 |
2011-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295852
|
- |
|
pidgin
|
pidgin
|
family_feedbag.c in the oscar protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of s…
|
CWE-20
Improper Input Validation
|
CVE-2011-4601
|
2024-11-21 10:32 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295853
|
- |
|
lighttpd
debian
|
lighttpd
debian_linux
|
Integer signedness error in the base64_decode function in the HTTP authentication functionality (http_auth.c) in lighttpd 1.4 before 1.4.30 and 1.5 before SVN revision 2806 allows remote attackers to…
|
NVD-CWE-Other
|
CVE-2011-4362
|
2024-11-21 10:32 |
2011-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295854
|
- |
|
openstack
|
nova
|
Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to ov…
|
CWE-22
Path Traversal
|
CVE-2011-4596
|
2024-11-21 10:32 |
2011-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295855
|
- |
|
phpmyadmin
|
phpmyadmin
|
Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x before 3.4.9 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4782
|
2024-11-21 10:32 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295856
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in libraries/display_export.lib.php in phpMyAdmin 3.4.x before 3.4.9 allow remote attackers to inject arbitrary web script or HTML via crafted URL …
|
CWE-79
Cross-site Scripting
|
CVE-2011-4780
|
2024-11-21 10:32 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295857
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4.x before 3.4.8 allow remote attackers to inject arbitrary web script or HTML via (1) a crafted database name, related to the Data…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4634
|
2024-11-21 10:32 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295858
|
- |
|
pmwiki
|
pmwiki
|
The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive,…
|
CWE-94
Code Injection
|
CVE-2011-4453
|
2024-11-21 10:32 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295859
|
- |
|
moodle
|
moodle
|
CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows remote attackers to inject arbitrary H…
|
CWE-94
Code Injection
|
CVE-2011-4203
|
2024-11-21 10:32 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295860
|
- |
|
zftpserver
|
zftpserver_suite
|
Directory traversal vulnerability in zFTPServer Suite 6.0.0.52 allows remote authenticated users to delete arbitrary directories via a crafted RMD (aka rmdir) command.
|
CWE-22
Path Traversal
|
CVE-2011-4717
|
2024-11-21 10:32 |
2011-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
