|
295991
|
- |
|
php
debian
canonical
|
php
debian_linux
ubuntu_linux
|
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations …
|
CWE-189
Numeric Errors
|
CVE-2011-4566
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295992
|
- |
|
zen-cart
|
zen_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in includes/templates/template_default/common/tpl_header_test_info.php in Zen Cart 1.3.9h, when debugging is enabled, might allow remote attackers …
|
CWE-79
Cross-site Scripting
|
CVE-2011-4547
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295993
|
- |
|
hastymail
|
hastymail2
|
Cross-site scripting (XSS) vulnerability in index.php in Hastymail2 2.1.1 before RC2 allows remote attackers to inject arbitrary web script or HTML via the rs parameter in a mailbox Drafts action.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4541
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295994
|
- |
|
xoops
|
xoops
|
Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.5.1.a, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the (1) text parameter to includ…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4565
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295995
|
- |
|
activedev
|
active_cms
|
Cross-site scripting (XSS) vulnerability in the admin script in Active CMS 1.2 allows remote attackers to inject arbitrary web script or HTML via the mod parameter in a module action.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4564
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295996
|
- |
|
jakcms
|
jakcms
|
Cross-site scripting (XSS) vulnerability in index.php in JAKCMS 2.0.4.1, and possibly other versions before 2.2.6 2011-09-23, allows remote attackers to inject arbitrary web script or HTML via the us…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4563
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295997
|
- |
|
john_godley
|
redirection_plugin
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) view/admin/log_item.php and (2) view/admin/log_item_details.php in the Redirection plugin 2.2.9 for WordPress allow remote attackers to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4562
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295998
|
- |
|
phorum
|
phorum
|
Cross-site scripting (XSS) vulnerability in admin.php in Phorum 5.2.18 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/index.php. NOTE: some of these detail…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4561
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295999
|
- |
|
drupal
|
petition_node_module
|
Cross-site scripting (XSS) vulnerability in the Petition Node module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4560
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296000
|
- |
|
vtiger
|
vtiger_crm
|
SQL injection vulnerability in the Calendar module in vTiger CRM 5.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the onlyforuser parameter in an index action to index.…
|
CWE-89
SQL Injection
|
CVE-2011-4559
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
