|
307591
|
- |
|
aimluck
|
aipo
aipo-asp
|
Cross-site request forgery (CSRF) vulnerability in Aimluck Aipo before 4.0.4.0, and Aipo for ASP before 4.0.4.0, allows remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2011-1341
|
2024-11-21 10:26 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307592
|
- |
|
cisco
|
ios
|
Cisco IOS 12.2, 12.3, 12.4, 15.0, and 15.1, when the data-link switching (DLSw) feature is configured, allows remote attackers to cause a denial of service (device crash) by sending a sequence of mal…
|
CWE-362
Race Condition
|
CVE-2011-1625
|
2024-11-21 10:26 |
2011-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307593
|
- |
|
cisco
|
ios
|
Cisco IOS 12.2(58)SE, when a login banner is configured, allows remote attackers to cause a denial of service (device reload) by establishing two SSH2 sessions, aka Bug ID CSCto62631.
|
CWE-399
Resource Management Errors
|
CVE-2011-1624
|
2024-11-21 10:26 |
2011-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307594
|
- |
|
citrix
|
xen
|
Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow local users to cause a denial of service and possibly execute arbitrary code via a crafted paravir…
|
CWE-189
Numeric Errors
|
CVE-2011-1583
|
2024-11-21 10:26 |
2011-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307595
|
- |
|
ibm
|
websphere_service_registry_and_repository
|
Cross-site scripting (XSS) vulnerability in agentDetect.jsp in the web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.3 before 6.3.0.5, 7.0 before 7.0.0.5, and 7.5 before 7.5.0.1 allows…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1357
|
2024-11-21 10:26 |
2011-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307596
|
- |
|
plone
|
plone
|
Cross-site scripting (XSS) vulnerability in skins/plone_templates/default_error_message.pt in Plone before 2.5.3 allows remote attackers to inject arbitrary web script or HTML via the type_name param…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1340
|
2024-11-21 10:26 |
2011-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307597
|
- |
|
ioquake3
openarena
worldofpadman
|
ioquake3_engine
openarena
world_of_padman
|
sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands …
|
CWE-20
Improper Input Validation
|
CVE-2011-1412
|
2024-11-21 10:26 |
2011-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307598
|
- |
|
emc
|
captiva_einput
|
EMC Captiva eInput 2.1.1 before 2.1.1.37 does not restrict the origin of calls to ActiveX functions, which allows remote attackers to read arbitrary files or cause a denial of service via a crafted w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1744
|
2024-11-21 10:26 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307599
|
- |
|
emc
|
captiva_einput
|
Cross-site scripting (XSS) vulnerability in EMC Captiva eInput 2.1.1 before 2.1.1.37 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-1743
|
2024-11-21 10:26 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307600
|
- |
|
emc
|
data_protection_advisor
|
EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information…
|
CWE-255
Credentials Management
|
CVE-2011-1742
|
2024-11-21 10:26 |
2011-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
