|
297231
|
- |
|
siemens
|
wincc_flexible
wincc
simatic_hmi_panels
wincc_runtime_advanced
wincc_flexible_runtime
|
Stack-based buffer overflow in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATI…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4875
|
2024-11-21 10:33 |
2012-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297232
|
- |
|
hp
|
data_protector_media_operations
|
DBServer.exe in HP Data Protector Media Operations 6.11 and earlier allows remote attackers to execute arbitrary code via a crafted request containing a large value in a length field.
|
CWE-94
Code Injection
|
CVE-2011-4791
|
2024-11-21 10:33 |
2012-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297233
|
- |
|
hp
|
network_automation
|
Unspecified vulnerability in HP Network Automation 7.5x, 7.6x, 9.0, and 9.10 allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-4790
|
2024-11-21 10:33 |
2012-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297234
|
- |
|
wordpress
|
wordpress
|
wp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier does not ensure that the specified MySQL database service is appropriate, which allows remote attackers to confi…
|
NVD-CWE-noinfo
|
CVE-2011-4899
|
2024-11-21 10:33 |
2012-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297235
|
- |
|
wordpress
|
wordpress
|
wp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier generates different error messages for requests lacking a dbname parameter depending on whether the MySQL creden…
|
CWE-200
Information Exposure
|
CVE-2011-4898
|
2024-11-21 10:33 |
2012-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297236
|
- |
|
sitracker
|
support_incident_tracker
|
translate.php in Support Incident Tracker (aka SiT!) 3.45 through 3.65 allows remote attackers to obtain sensitive information via a direct request using the save action, which reveals the installati…
|
NVD-CWE-noinfo
|
CVE-2011-5075
|
2024-11-21 10:33 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297237
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to hijack the authentication of administrators for requests that c…
|
CWE-352
Origin Validation Error
|
CVE-2011-5074
|
2024-11-21 10:33 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297238
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to execute arbitrary SQL commands via the (1) start parameter to portal/kb.php; (2) co…
|
CWE-89
SQL Injection
|
CVE-2011-5072
|
2024-11-21 10:33 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297239
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple cross-site scripting (XSS) vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to inject arbitrary web script or HTML via the (1) mode parameter to cont…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5073
|
2024-11-21 10:33 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297240
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) before 3.64 allow remote attackers to execute arbitrary SQL commands via the (1) exc[] parameter to report_marketing.php,…
|
CWE-89
SQL Injection
|
CVE-2011-5071
|
2024-11-21 10:33 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
