|
298001
|
- |
|
reallysimplechat
|
really_simple_chat
|
Multiple SQL injection vulnerabilities in A Really Simple Chat (ARSC) 3.3-rc2 allow remote attackers to execute arbitrary SQL commands via the (1) arsc_user parameter to base/admin/edit_user.php, (2)…
|
CWE-89
SQL Injection
|
CVE-2011-2181
|
2024-11-21 10:27 |
2011-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298002
|
- |
|
reallysimplechat
|
really_simple_chat
|
Cross-site scripting (XSS) vulnerability in dereferer.php in A Really Simple Chat (ARSC) 3.3-rc2 allows remote attackers to inject arbitrary web script or HTML via the arsc_link parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2180
|
2024-11-21 10:27 |
2011-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298003
|
- |
|
videolan
|
vlc_media_player
|
Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unsp…
|
CWE-189
Numeric Errors
|
CVE-2011-2194
|
2024-11-21 10:27 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298004
|
- |
|
clusterresources
|
torque_resource_manager
|
Multiple buffer overflows in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.x before 2.4.14, 2.5.x before 2.5.6, and 3.x before 3.0.2 allow (1) remote authenticated …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2193
|
2024-11-21 10:27 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298005
|
- |
|
foxitsoftware
|
foxit_reader
|
Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader before 4.0.0.0619 allows remote attackers to execute arbitrary code or cause a denial of service (application crash)…
|
CWE-189
Numeric Errors
|
CVE-2011-1908
|
2024-11-21 10:27 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298006
|
7.5 |
HIGH
Network
|
linux
fedoraproject
|
linux_kernel
fedora
|
Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control P…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2011-1770
|
2024-11-21 10:27 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298007
|
- |
|
brad_fitzpatrick
|
djabberd
|
XMLParser.pm in DJabberd before 0.85 allows remote authenticated users to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consum…
|
CWE-399
Resource Management Errors
|
CVE-2011-2206
|
2024-11-21 10:27 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298008
|
- |
|
freedesktop
d-bus_project
|
dbus
d-bus
|
The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, whic…
|
CWE-20
Improper Input Validation
|
CVE-2011-2200
|
2024-11-21 10:27 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298009
|
- |
|
prosody
|
prosody
|
Prosody before 0.8.1 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document con…
|
CWE-399
Resource Management Errors
|
CVE-2011-2205
|
2024-11-21 10:27 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298010
|
- |
|
matthewwild
|
luaexpat
|
LuaExpat before 1.2.0 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document co…
|
CWE-399
Resource Management Errors
|
CVE-2011-2188
|
2024-11-21 10:27 |
2011-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
