|
307561
|
- |
|
prosody
|
prosody
|
Prosody 0.8.x before 0.8.1, when MySQL is used, assigns an incorrect data type to the value column in certain tables, which might allow remote attackers to cause a denial of service (data truncation)…
|
CWE-399
Resource Management Errors
|
CVE-2011-2531
|
2024-11-21 10:28 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307562
|
- |
|
rockwellautomation
|
rslinx
eds_hardware_installation_tool
|
Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2530
|
2024-11-21 10:28 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307563
|
- |
|
icinga
|
icinga
|
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in Icinga before 1.4.1, when escape_html_tags is disabled, allow remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2011-2477
|
2024-11-21 10:28 |
2011-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307564
|
- |
|
coppermine-gallery
|
coppermine_photo_gallery
|
Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerabil…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2476
|
2024-11-21 10:28 |
2011-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307565
|
- |
|
sybase
|
onebridge_mobile_data_suite
|
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote a…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-2475
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307566
|
- |
|
sybase
|
easerver
|
Directory traversal vulnerability in the HTTP Server in Sybase EAServer 6.3.1 Developer Edition allows remote attackers to read arbitrary files via a /.\../\../\ sequence in a path.
|
CWE-22
Path Traversal
|
CVE-2011-2474
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307567
|
- |
|
maynard_johnson
|
oprofile
|
The do_dump_data function in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to create or overwrite arbitrary files via a crafted --session-dir argument in conjunction with a sy…
|
CWE-59
Link Following
|
CVE-2011-2473
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307568
|
- |
|
maynard_johnson
|
oprofile
|
Directory traversal vulnerability in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to overwrite arbitrary files via a .. (dot dot) in the --save argument, related to the --ses…
|
CWE-22
Path Traversal
|
CVE-2011-2472
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307569
|
- |
|
maynard_johnson
|
oprofile
|
utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemon…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2471
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307570
|
- |
|
google
|
chrome
|
The DOM implementation in Google Chrome before 12.0.742.91 allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2342
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
