|
302801
|
- |
|
cherokee-project
|
cherokee
|
Cross-site request forgery (CSRF) vulnerability in Cherokee-admin in Cherokee before 1.2.99 allows remote attackers to hijack the authentication of administrators for requests that insert cross-site …
|
CWE-352
Origin Validation Error
|
CVE-2011-2191
|
2024-11-21 10:27 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302802
|
- |
|
cherokee-project
|
cherokee
|
The generate_admin_password function in Cherokee before 1.2.99 uses time and PID values for seeding of a random number generator, which makes it easier for local users to determine admin passwords vi…
|
CWE-310
Cryptographic Issues
|
CVE-2011-2190
|
2024-11-21 10:27 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302803
|
- |
|
checkpoint
|
vpn-1_firewall-1_vsx
connectra_ngx
vpn-1
|
Multiple unspecified vulnerabilities in Check Point SSL Network Extender (SNX), SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow re…
|
NVD-CWE-noinfo
|
CVE-2011-1827
|
2024-11-21 10:27 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302804
|
- |
|
exim
|
exim
|
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-1764
|
2024-11-21 10:27 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302805
|
- |
|
cisco
|
ios
ios_xe
unified_communications_manager
|
Memory leak in Cisco IOS 12.4, 15.0, and 15.1, Cisco IOS XE 2.5.x through 3.2.x, and Cisco Unified Communications Manager (CUCM) 6.x and 7.x before 7.1(5b)su4, 8.x before 8.5(1)su2, and 8.6 before 8.…
|
CWE-399
Resource Management Errors
|
CVE-2011-2072
|
2024-11-21 10:27 |
2011-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302806
|
- |
|
mercator
|
sentinel
|
SQL injection vulnerability in the login form in the web interface in Mercator SENTINEL 2.0 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2011-1913
|
2024-11-21 10:27 |
2011-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302807
|
- |
|
jasperforge
|
jasperreports_server_community_project
|
JasperServer in JasperReports Server Community Project 3.7.0 and 3.7.1 uses a predictable _flowExecutionKey parameter, which makes it easier for remote attackers to conduct cross-site request forgery…
|
CWE-352
Origin Validation Error
|
CVE-2011-1911
|
2024-11-21 10:27 |
2011-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302808
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server
|
Multiple untrusted search path vulnerabilities in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 all…
|
NVD-CWE-Other
|
CVE-2011-1991
|
2024-11-21 10:27 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302809
|
- |
|
microsoft
|
sharepoint_server
excel
excel_viewer
office_compatibility_pack
office
|
Microsoft Excel 2007 SP2; Excel in Office 2007 SP2; Excel Viewer SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and Excel Services on Office SharePoint Server 2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1990
|
2024-11-21 10:27 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302810
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
excel_viewer
office_compatibility_pack
|
Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel,…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1988
|
2024-11-21 10:27 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
