|
304861
|
- |
|
atmail
|
atmail_open
|
Multiple cross-site scripting (XSS) vulnerabilities in AtMail Open (aka AtMail Open-Source edition) 1.04 allow remote attackers to inject arbitrary web script or HTML via the func parameter to (1) ld…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4540
|
2024-11-21 10:32 |
2011-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304862
|
- |
|
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in Jenkins Core in Jenkins before 1.438, and 1.409 LTS before 1.409.3 LTS, when a stand-alone container is used, allows remote attackers to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4344
|
2024-11-21 10:32 |
2011-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304863
|
- |
|
geeklog
|
geeklog
|
Multiple cross-site scripting (XSS) vulnerabilities in the story creation feature in Geeklog 1.8.0 allow remote attackers to inject arbitrary web script or HTML via the (1) code or (2) raw BBcode tag…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4647
|
2024-11-21 10:32 |
2011-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304864
|
- |
|
lesterchan
|
wp-postratings
|
SQL injection vulnerability in wp-postratings.php in the WP-PostRatings plugin 1.50, 1.61, and probably other versions before 1.62 for WordPress allows remote authenticated users with the Author role…
|
CWE-94
Code Injection
|
CVE-2011-4646
|
2024-11-21 10:32 |
2011-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304865
|
- |
|
hastymail
|
hastymail2
|
Hastymail2 2.1.1 before RC2 allows remote attackers to execute arbitrary commands via the (1) rs or (2) rsargs[] parameter in a mailbox Drafts action to the default URI.
|
CWE-89
SQL Injection
|
CVE-2011-4542
|
2024-11-21 10:32 |
2011-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304866
|
- |
|
namazu
|
namazu
|
Cross-site scripting (XSS) vulnerability in Namazu before 2.0.21, when Internet Explorer 6 or 7 is used, allows remote attackers to inject arbitrary web script or HTML via a cookie.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4345
|
2024-11-21 10:32 |
2011-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304867
|
- |
|
apache
|
http_server
|
The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use o…
|
CWE-20
Improper Input Validation
|
CVE-2011-4317
|
2024-11-21 10:32 |
2011-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304868
|
- |
|
novell
|
netware
|
Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote attackers to execute arbitrary code or cause a denial of service (abend or NFS outage) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4191
|
2024-11-21 10:32 |
2011-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304869
|
- |
|
canonical
|
ubuntu_linux
|
The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting dat…
|
CWE-20
Improper Input Validation
|
CVE-2011-4405
|
2024-11-21 10:32 |
2011-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304870
|
- |
|
isc
|
bind
|
query.c in ISC BIND 9.0.x through 9.6.x, 9.4-ESV through 9.4-ESV-R5, 9.6-ESV through 9.6-ESV-R5, 9.7.0 through 9.7.4, 9.8.0 through 9.8.1, and 9.9.0a1 through 9.9.0b1 allows remote attackers to cause…
|
NVD-CWE-noinfo
|
CVE-2011-4313
|
2024-11-21 10:32 |
2011-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
