|
304781
|
- |
|
microsys
|
promotic
|
Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (data corruption and application crash) via…
|
CWE-399
Resource Management Errors
|
CVE-2011-4874
|
2024-11-21 10:33 |
2012-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304782
|
- |
|
openbsd
|
openssh
|
The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory co…
|
CWE-189
Numeric Errors
|
CVE-2011-5000
|
2024-11-21 10:33 |
2012-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304783
|
- |
|
sixapart
|
movable_type
|
Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-5085
|
2024-11-21 10:33 |
2012-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304784
|
- |
|
sixapart
|
movable_type
|
Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-5084
|
2024-11-21 10:33 |
2012-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304785
|
- |
|
dotclear
|
dotclear
|
Unrestricted file upload vulnerability in inc/swf/swfupload.swf in Dotclear 2.3.1 and 2.4.2 allows remote attackers to execute arbitrary code by uploading a file with an executable PHP extension, the…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5083
|
2024-11-21 10:33 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304786
|
- |
|
s2member
|
s2member
|
Cross-site scripting (XSS) vulnerability in the s2Member Pro plugin before 111220 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s2member_pro_authnet_checkout[co…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5082
|
2024-11-21 10:33 |
2012-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304787
|
- |
|
pidgin
|
pidgin
|
The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin before 2.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by changing a nick…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4939
|
2024-11-21 10:33 |
2012-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304788
|
- |
|
ibm
|
maximo_asset_management_essentials
maximo_asset_management
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2011-4819
|
2024-11-21 10:33 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304789
|
- |
|
ibm
|
maximo_asset_management_essentials
maximo_asset_management
|
Open redirect vulnerability in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phi…
|
CWE-20
Improper Input Validation
|
CVE-2011-4818
|
2024-11-21 10:33 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304790
|
- |
|
ibm
|
maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
trivoli_service_request_manager
maximo_service_desk
tivoli_change_and_configuration_management…
|
The About option on the Help menu in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Ma…
|
CWE-200
Information Exposure
|
CVE-2011-4817
|
2024-11-21 10:33 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
