|
297611
|
- |
|
ibm
|
websphere_portal
web_content_manager
|
Cross-site scripting (XSS) vulnerability in the PageBuilder2 (aka Page Builder) theme in IBM WebSphere Portal 7.x before 7.0.0.1 CF006, as used in IBM Web Content Manager (WCM) and other products, al…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2754
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297612
|
- |
|
squirrelmail
|
squirrelmail
|
Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.21 and earlier allow remote attackers to hijack the authentication of unspecified victims via vectors involving (1) the …
|
CWE-352
Origin Validation Error
|
CVE-2011-2753
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297613
|
- |
|
squirrelmail
|
squirrelmail
|
CRLF injection vulnerability in SquirrelMail 1.4.21 and earlier allows remote attackers to modify or add preference values via a \n (newline) character, a different vulnerability than CVE-2010-4555.
|
CWE-94
Code Injection
|
CVE-2011-2752
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297614
|
- |
|
parodia
|
parodia
|
SQL injection vulnerability in Parodia before 6.809 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2011-2751
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297615
|
- |
|
novell
|
file_reporter
|
NFRAgent.exe in Novell File Reporter 1.0.4.2 and earlier allows remote attackers to delete arbitrary files via a full pathname in an SRS OPERATION 4 CMD 5 request to /FSF/CMD.
|
CWE-399
Resource Management Errors
|
CVE-2011-2750
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297616
|
8.8 |
HIGH
Network
|
libpng
fedoraproject
debian
canonical
|
libpng
fedora
debian_linux
ubuntu_linux
|
The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 does not properly handle invalid sCAL chunks, which allows re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2692
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297617
|
6.5 |
MEDIUM
Network
|
libpng
fedoraproject
debian
|
libpng
fedora
debian_linux
|
The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an emp…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-2691
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297618
|
8.8 |
HIGH
Network
|
libpng
fedoraproject
debian
canonical
|
libpng
fedora
debian_linux
ubuntu_linux
|
Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set…
|
CWE-120
Classic Buffer Overflow
|
CVE-2011-2690
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297619
|
6.5 |
MEDIUM
Network
|
libpng
fedoraproject
debian
canonical
|
libpng
fedora
debian_linux
ubuntu_linux
|
The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (appli…
|
CWE-125
Out-of-bounds Read
|
CVE-2011-2501
|
2024-11-21 10:28 |
2011-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297620
|
- |
|
apache
|
tomcat
|
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allow…
|
CWE-20
Improper Input Validation
|
CVE-2011-2526
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
