|
304441
|
- |
|
rack_project
|
rack
|
Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote atta…
|
CWE-310
Cryptographic Issues
|
CVE-2011-5036
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304442
|
- |
|
oracle
|
glassfish_server
|
Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters w…
|
CWE-20
Improper Input Validation
|
CVE-2011-5035
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304443
|
- |
|
apache
|
geronimo
|
Apache Geronimo 2.2.1 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of s…
|
CWE-20
Improper Input Validation
|
CVE-2011-5034
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304444
|
- |
|
php
|
php
|
PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consu…
|
CWE-20
Improper Input Validation
|
CVE-2011-4885
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304445
|
- |
|
jruby
|
jruby
|
JRuby before 1.6.5.1 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumptio…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2011-4838
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304446
|
- |
|
ruby-lang
|
ruby
|
Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (…
|
CWE-20
Improper Input Validation
|
CVE-2011-4815
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304447
|
- |
|
configserver
|
configserver_security_firewall
|
Stack-based buffer overflow in CFS.c in ConfigServer Security & Firewall (CSF) before 5.43, when running on a DirectAdmin server, allows local users to cause a denial of service (crash) via a long st…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5033
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304448
|
- |
|
winmount
|
winmount
|
WMDrive.sys 3.4.181.224 in WinMount 3.5.1018 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted 0x87342000 IOCTL request to the WMDriver device.
|
NVD-CWE-Other
|
CVE-2011-5032
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304449
|
- |
|
shilpisoft
|
capexweb
|
Multiple SQL injection vulnerabilities in servlet/capexweb.parentvalidatepassword in cApexWEB 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) dfuserid and (2) dfpassword para…
|
CWE-89
SQL Injection
|
CVE-2011-5031
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304450
|
- |
|
valthbald
|
meta_tags_quick
|
Cross-site scripting (XSS) vulnerability in the Meta tags quick module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5030
|
2024-11-21 10:33 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
