|
302171
|
- |
|
aleksey
apple
|
xml_security_library
webkit
|
xslt.c in XML Security Library (aka xmlsec) before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors invol…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1425
|
2024-11-21 10:26 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302172
|
- |
|
icloudcenter
|
icjobsite
|
SQL injection vulnerability in ICloudCenter ICJobSite 1.1 allows remote attackers to execute arbitrary SQL commands via the pid parameter to an unspecified component, a different vulnerability than C…
|
CWE-89
SQL Injection
|
CVE-2011-1557
|
2024-11-21 10:26 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302173
|
- |
|
aphpkb
|
aphpkb
|
SQL injection vulnerability in plugins/pdfClasses/pdfgen.php in Andy's PHP Knowledgebase (Aphpkb) 0.95.4 allows remote attackers to execute arbitrary SQL commands via the pdfa parameter.
|
CWE-89
SQL Injection
|
CVE-2011-1556
|
2024-11-21 10:26 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302174
|
- |
|
aphpkb
|
aphpkb
|
SQL injection vulnerability in saa.php in Andy's PHP Knowledgebase (Aphpkb) 0.95.3 and earlier allows remote attackers to execute arbitrary SQL commands via the aid parameter, a different vulnerabili…
|
CWE-89
SQL Injection
|
CVE-2011-1555
|
2024-11-21 10:26 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302175
|
- |
|
aphpkb
|
aphpkb
|
Multiple SQL injection vulnerabilities in Andy's PHP Knowledgebase (Aphpkb) before 0.95.3 allow remote attackers to execute arbitrary SQL commands via the s parameter to (1) a_viewusers.php or (2) ke…
|
CWE-89
SQL Injection
|
CVE-2011-1546
|
2024-11-21 10:26 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302176
|
- |
|
t1lib
foolabs
glyphandcog
|
t1lib
xpdf
xpdfreader
|
Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document con…
|
CWE-189
Numeric Errors
|
CVE-2011-1554
|
2024-11-21 10:26 |
2011-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302177
|
- |
|
t1lib
foolabs
glyphandcog
|
t1lib
xpdf
xpdfreader
|
Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF …
|
CWE-399
Resource Management Errors
|
CVE-2011-1553
|
2024-11-21 10:26 |
2011-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302178
|
- |
|
t1lib
foolabs
glyphandcog
|
t1lib
xpdf
xpdfreader
|
t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, reads from invalid memory locations, which allows remote attackers to cause a denial of service (application crash)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1552
|
2024-11-21 10:26 |
2011-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302179
|
- |
|
novell
|
opensuse_factory
|
SUSE openSUSE Factory assigns ownership of the /var/log/cobbler/ directory tree to the web-service user account, which might allow local users to gain privileges by leveraging access to this account …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1551
|
2024-11-21 10:26 |
2011-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302180
|
- |
|
gentoo
|
logrotate
|
The default configuration of logrotate on SUSE openSUSE Factory uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1550
|
2024-11-21 10:26 |
2011-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
