|
298871
|
- |
|
clickdesk
|
clickdesk_live_support-live_chat_plugin
|
Cross-site scripting (XSS) vulnerability in clickdesk.php in ClickDesk Live Support - Live Chat plugin 2.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cdwidge…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5181
|
2024-11-21 10:33 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298872
|
- |
|
zooeffect
|
zooeffect
|
Cross-site scripting (XSS) vulnerability in wp-1pluginjquery.php in the ZooEffect plugin 1.01 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOT…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5180
|
2024-11-21 10:33 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298873
|
- |
|
skysa
|
skysa_app_bar_integration_plugin
|
Cross-site scripting (XSS) vulnerability in skysa-official/skysa.php in Skysa App Bar Integration plugin, possibly before 1.04, for WordPress allows remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5179
|
2024-11-21 10:33 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298874
|
- |
|
infoblox
|
netmri
|
Multiple cross-site scripting (XSS) vulnerabilities in netmri/config/userAdmin/login.tdf in Infoblox NetMRI 6.0.2.42, 6.1.2, 6.2.1 and earlier allow remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5178
|
2024-11-21 10:33 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298875
|
- |
|
esyndicat
|
esyndicat_pro
|
Multiple cross-site scripting (XSS) vulnerabilities in admin/controller.php in eSyndiCat Pro 2.3.05 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to the admin…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5177
|
2024-11-21 10:33 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298876
|
- |
|
matomo
|
matomo
|
Unspecified vulnerability in Piwik 1.2 through 1.4 allows remote attackers with the view permission to execute arbitrary code via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2011-4941
|
2024-11-21 10:33 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298877
|
- |
|
silverstripe
|
silverstripe
|
code/sitefeatures/PageCommentInterface.php in SilverStripe 2.4.x before 2.4.6 might allow remote attackers to execute arbitrary code via a crafted cookie in a user comment submission, which is not pr…
|
CWE-20
Improper Input Validation
|
CVE-2011-4962
|
2024-11-21 10:33 |
2012-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298878
|
- |
|
silverstripe
|
silverstripe
|
SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6 allows remote authenticated users with the EDIT_PERMISSIONS permission to gain administrator privileges via a TreeMultiselectField that include…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4961
|
2024-11-21 10:33 |
2012-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298879
|
- |
|
silverstripe
|
silverstripe
|
SQL injection vulnerability in the Folder::findOrMake method in SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6 allows remote attackers to execute arbitrary SQL commands via unspecified vecto…
|
CWE-89
SQL Injection
|
CVE-2011-4960
|
2024-11-21 10:33 |
2012-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298880
|
- |
|
silverstripe
|
silverstripe
|
SQL injection vulnerability in the addslashes method in SilverStripe 2.3.x before 2.3.12 and 2.4.x before 2.4.6, when connected to a MySQL database using far east character encodings, allows remote a…
|
CWE-89
SQL Injection
|
CVE-2011-4959
|
2024-11-21 10:33 |
2012-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
