|
298941
|
- |
|
qibosoft
|
qi_bo_cms
|
SQL injection vulnerability in member/list.php in qibosoft Qi Bo CMS 7 allows remote attackers to execute arbitrary SQL commands via the aidDB[] parameter.
|
CWE-89
SQL Injection
|
CVE-2011-1064
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298942
|
- |
|
cherry-software
|
photopad
|
Multiple cross-site scripting (XSS) vulnerabilities in Cherry-Design Photopad 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id or (2) data[title] parameters in an ed…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1063
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298943
|
- |
|
taskfreak
|
taskfreak\!
|
Multiple cross-site scripting (XSS) vulnerabilities in include/html/header.php in TaskFreak! 0.6.4 allow remote attackers to inject arbitrary web script or HTML via the (1) sContext, (2) sort, (3) di…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1062
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298944
|
- |
|
webmastersite
|
wsn_guest
|
SQL injection vulnerability in memberlist.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the time parameter.
|
CWE-89
SQL Injection
|
CVE-2011-1061
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298945
|
- |
|
webmastersite
|
wsn_guest
|
SQL injection vulnerability in the member function in classes/member.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the wsnuser cookie to index.php.
|
CWE-89
SQL Injection
|
CVE-2011-1060
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298946
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in WebCore in WebKit before r77705, as used in Google Chrome before 11.0.672.2 and other products, allows user-assisted remote attackers to cause a denial of service (app…
|
CWE-416
Use After Free
|
CVE-2011-1059
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298947
|
- |
|
ibm
|
lotus_sametime
|
Multiple cross-site scripting (XSS) vulnerabilities in stconf.nsf in the server in IBM Lotus Sametime 8.0.1 allow remote attackers to inject arbitrary web script or HTML via (1) the messageString par…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1038
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298948
|
- |
|
avahi
redhat
fedoraproject
canonical
debian
|
avahi
enterprise_linux
fedora
ubuntu_linux
debian_linux
|
avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: …
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2011-1002
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298949
|
- |
|
moinmo
|
moinmoin
|
Cross-site scripting (XSS) vulnerability in the reStructuredText (rst) parser in parser/text_rst.py in MoinMoin before 1.9.3, when docutils is installed or when "format rst" is set, allows remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1058
|
2024-11-21 10:25 |
2011-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298950
|
- |
|
metasploit
|
metasploit_framework
|
The installer for Metasploit Framework 3.5.1, when running on Windows, uses weak inherited permissions for the Metasploit installation directory, which allows local users to gain privileges by replac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1056
|
2024-11-21 10:25 |
2011-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
