|
306771
|
- |
|
apache
|
tomcat
|
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allow…
|
CWE-20
Improper Input Validation
|
CVE-2011-2526
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306772
|
- |
|
dokuwiki
|
dokuwiki
|
Cross-site scripting (XSS) vulnerability in the RSS embedding feature in DokuWiki before 2011-05-25a Rincewind allows remote attackers to inject arbitrary web script or HTML via a link.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2510
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306773
|
- |
|
phpmyadmin
|
phpmyadmin
|
Directory traversal vulnerability in libraries/display_tbl.lib.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1, when a certain MIME transformation feature is enabled, allows remote aut…
|
CWE-22
Path Traversal
|
CVE-2011-2508
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306774
|
- |
|
phpmyadmin
|
phpmyadmin
|
libraries/server_synchronize.lib.php in the Synchronize implementation in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does not properly quote regular expressions, which allows remote auth…
|
CWE-94
Code Injection
|
CVE-2011-2507
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306775
|
- |
|
phpmyadmin
|
phpmyadmin
|
setup/lib/ConfigGenerator.class.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does not properly restrict the presence of comment closing delimiters, which allows remote attackers to …
|
CWE-94
Code Injection
|
CVE-2011-2506
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306776
|
- |
|
phpmyadmin
|
phpmyadmin
|
libraries/auth/swekey/swekey.auth.lib.php in the Swekey authentication feature in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 assigns values to arbitrary parameters referenced in the quer…
|
CWE-94
Code Injection
|
CVE-2011-2505
|
2024-11-21 10:28 |
2011-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306777
|
- |
|
apache
shibboleth
|
xml_security_for_c\+\+
shibboleth-sp
|
Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of servic…
|
CWE-189
Numeric Errors
|
CVE-2011-2516
|
2024-11-21 10:28 |
2011-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306778
|
- |
|
hp
|
hp-ux
|
Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-2398
|
2024-11-21 10:28 |
2011-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306779
|
- |
|
checkpoint
|
multi-domain_management\/provider-1
|
Unspecified vulnerability in Check Point Multi-Domain Management / Provider-1 NGX R65, R70, R71, and R75, and SmartCenter during installation on non-Windows machines, allows local users on the MDS sy…
|
NVD-CWE-noinfo
|
CVE-2011-2664
|
2024-11-21 10:28 |
2011-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306780
|
- |
|
isc
|
bind
|
Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone (RPZ) contains DNAME or certain CNAME records, allows remote att…
|
NVD-CWE-noinfo
|
CVE-2011-2465
|
2024-11-21 10:28 |
2011-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
