|
300391
|
- |
|
basercms
|
basercms
|
BaserCMS before 1.6.12 does not properly restrict additions to the membership of the operators group, which allows remote authenticated users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2674
|
2024-11-21 10:28 |
2011-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300392
|
- |
|
basercms
|
basercms
|
Cross-site scripting (XSS) vulnerability in BaserCMS before 1.6.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2673
|
2024-11-21 10:28 |
2011-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300393
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent the starting of a download in response to the holding of the Enter key, which allows u…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2372
|
2024-11-21 10:28 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300394
|
- |
|
fast_cgi_project
debian
|
fast_cgi
debian_linux
|
The FCGI (aka Fast CGI) module 0.70 through 0.73 for Perl, as used by CGI::Fast, uses environment variable values from one request during processing of a later request, which allows remote attackers …
|
CWE-287
Improper Authentication
|
CVE-2011-2766
|
2024-11-21 10:28 |
2011-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300395
|
- |
|
cisco
|
telepresence_system_1000_mxp
telepresence_system_1700_mxp
telepresence_mxp_software
|
Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Series F9.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via a c…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2544
|
2024-11-21 10:28 |
2011-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300396
|
- |
|
cisco
|
telepresence_codec_c40
telepresence_codec_c60
telepresence_codec_c90
telepresence_c_series_software
|
Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC4.2.0 allows remote authenticated users to cause a denial of service (endpoint reboot or process cr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2543
|
2024-11-21 10:28 |
2011-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300397
|
- |
|
adobe
|
flash_player
|
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2444
|
2024-11-21 10:28 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300398
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via crafted streaming media, relate…
|
CWE-20
Improper Input Validation
|
CVE-2011-2430
|
2024-11-21 10:28 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300399
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to bypass intended access restrictions and obtain sensitive informat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2429
|
2024-11-21 10:28 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300400
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service (browser cras…
|
CWE-20
Improper Input Validation
|
CVE-2011-2428
|
2024-11-21 10:28 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
