|
298131
|
- |
|
idrive_inc
|
idrive_online_backup
|
The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100_EDA1811C.ocx in IDrive Online Backup 3.4.0 allows remote attackers to write to arbitrary files via a pathname in th…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5290
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298132
|
- |
|
diego_uscanga
|
atube_catcher
|
The SaveDecrypted method in the ChilkatCrypt2.ChilkatOmaDrm.1 ActiveX control in ChilkatCrypt2.dll in aTube Catcher 2.3.570 allows remote attackers to write to arbitrary files via a pathname in the a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5289
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298133
|
- |
|
threedify
|
threedify_designer
|
Multiple buffer overflows in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll in ThreeDify Designer 5.0.2 allow remote attackers to execute arbitrary code via a long argument to t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5288
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298134
|
- |
|
hesk
|
hesk
|
Multiple cross-site scripting (XSS) vulnerabilities in HESK before 2.4.1 allow remote attackers to inject arbitrary web script or HTML via the (1) hesk_settings[tmp_title] or (2) hesklang[ENCODING] p…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5287
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298135
|
- |
|
social_slider_project
|
social_slider
|
SQL injection vulnerability in social-slider-2/ajax.php in the Social Slider plugin before 7.4.2 for WordPress allows remote attackers to execute arbitrary SQL commands via the rA array parameter.
|
CWE-89
SQL Injection
|
CVE-2011-5286
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298136
|
- |
|
bugfree
|
bugfree
|
Multiple cross-site scripting (XSS) vulnerabilities in BugFree 2.1.3 allow remote attackers to inject arbitrary web script or HTML via (1) the ActionType parameter to Bug.php, the ReportMode paramete…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5285
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298137
|
- |
|
smoothwall
|
smoothwall
|
Cross-site request forgery (CSRF) vulnerability in the web management interface in httpd/cgi-bin/shutdown.cgi in Smoothwall Express 3.1 and 3.0 SP3 and earlier allows remote attackers to hijack the a…
|
CWE-352
Origin Validation Error
|
CVE-2011-5284
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298138
|
- |
|
smoothwall
|
smoothwall
|
Cross-site scripting (XSS) vulnerability in the web management interface in httpd/cgi-bin/ipinfo.cgi in Smoothwall Express 3.1 and 3.0 SP3 and earlier allows remote attackers to inject arbitrary web …
|
CWE-79
Cross-site Scripting
|
CVE-2011-5283
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298139
|
- |
|
hans_alshoff
|
minalic
|
Multiple stack-based buffer overflows in MinaliC 2.0.0 allow remote attackers to execute arbitrary code via a (1) session_id cookie in a request to the get_cookie_value function in response.c, (2) di…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0273
|
2024-11-21 10:34 |
2014-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298140
|
- |
|
rom_walton
|
boinc
|
Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5280
|
2024-11-21 10:34 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
