|
300271
|
6.5 |
MEDIUM
Network
|
google
|
blink
|
Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function.
|
CWE-416
Use After Free
|
CVE-2011-2353
|
2024-11-21 10:28 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300272
|
7.2 |
HIGH
Network
|
cisco
|
telepresence_video_communication_server
|
Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability which allows remote, authenticated attackers to execute arbitrary commands.
|
CWE-74
Injection
|
CVE-2011-2538
|
2024-11-21 10:28 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300273
|
9.8 |
CRITICAL
Network
|
apache
debian
redhat
canonical
|
mod_perl
debian_linux
enterprise_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux
|
mod_perl 2.0 through 2.0.10 allows attackers to execute arbitrary Perl code by placing it in a user-owned .htaccess file, because (contrary to the documentation) there is no configuration option that…
|
CWE-94
Code Injection
|
CVE-2011-2767
|
2024-11-21 10:28 |
2018-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300274
|
7.5 |
HIGH
Network
|
pyro_project
|
pyro
|
pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.
|
CWE-59
Link Following
|
CVE-2011-2765
|
2024-11-21 10:28 |
2018-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300275
|
5.5 |
MEDIUM
Local
|
rkkda
|
foo2zjs
|
foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurel…
|
CWE-59
Link Following
|
CVE-2011-2684
|
2024-11-21 10:28 |
2017-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300276
|
5.9 |
MEDIUM
Network
|
reseed_project
|
reseed
|
reseed seeds random numbers from an insecure HTTP request to random.org during installation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a man-in-the-…
|
CWE-254
7PK - Security Features
|
CVE-2011-2683
|
2024-11-21 10:28 |
2017-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300277
|
- |
|
tribiq
|
tribiq_cms
|
The (1) templatewrap/templatefoot.php, (2) cmsjs/plugin.js.php, and (3) cmsincludes/cms_plugin_api_link.inc.php scripts in Tribal Tribiq CMS before 5.2.7c allow remote attackers to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2011-2727
|
2024-11-21 10:28 |
2014-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300278
|
- |
|
gnu
|
glibc
eglibc
|
Integer signedness error in Glibc before 2.13 and eglibc before 2.13, when using Supplemental Streaming SIMD Extensions 3 (SSSE3) optimization, allows context-dependent attackers to execute arbitrary…
|
CWE-94
Code Injection
|
CVE-2011-2702
|
2024-11-21 10:28 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300279
|
- |
|
citrix
|
access_gateway_plug-in
|
Integer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-69.4 allow…
|
CWE-189
Numeric Errors
|
CVE-2011-2593
|
2024-11-21 10:28 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300280
|
- |
|
citrix
|
access_gateway_plug-in
|
Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2592
|
2024-11-21 10:28 |
2014-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
