|
306681
|
- |
|
icewarp
|
mail_server
|
IceWarp WebMail in IceWarp Mail Server before 10.3.3 allows remote attackers to obtain configuration information via a direct request to the /server URI, which triggers a call to the phpinfo function.
|
CWE-200
Information Exposure
|
CVE-2011-3580
|
2024-11-21 10:30 |
2011-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306682
|
- |
|
icewarp
|
mail_server
|
server/webmail.php in IceWarp WebMail in IceWarp Mail Server before 10.3.3 allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of se…
|
CWE-399
Resource Management Errors
|
CVE-2011-3579
|
2024-11-21 10:30 |
2011-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306683
|
- |
|
juan_toledo
|
etherape
|
The add_conversation function in conversations.c in EtherApe before 0.9.12 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an RPC packet, rel…
|
NVD-CWE-Other
|
CVE-2011-3369
|
2024-11-21 10:30 |
2011-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306684
|
- |
|
ffmpeg
|
ffmpeg
|
The Matroska format decoder in FFmpeg before 0.8.3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted file.
|
CWE-94
Code Injection
|
CVE-2011-3504
|
2024-11-21 10:30 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306685
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
YARR, as used in Mozilla Firefox before 7.0, Thunderbird before 7.0, and SeaMonkey before 2.4, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary c…
|
CWE-94
Code Injection
|
CVE-2011-3232
|
2024-11-21 10:30 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306686
|
- |
|
wibu
|
codemeter_webadmin
|
Cross-site scripting (XSS) vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote attackers to inject arbitrary web script or HTML via the BoxSerial parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3689
|
2024-11-21 10:30 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306687
|
- |
|
sonexis
|
conferencemanager
|
Multiple SQL injection vulnerabilities in Sonexis ConferenceManager 9.3.14.0 allow remote attackers to execute arbitrary SQL commands via (1) the g parameter to Conference/Audio/AudioResourceContaine…
|
CWE-89
SQL Injection
|
CVE-2011-3688
|
2024-11-21 10:30 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306688
|
- |
|
sonexis
|
conferencemanager
|
Multiple cross-site scripting (XSS) vulnerabilities in Sonexis ConferenceManager 9.2.11.0 allow remote attackers to inject arbitrary web script or HTML via (1) the txtConferenceID parameter to HostLo…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3687
|
2024-11-21 10:30 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306689
|
- |
|
sonexis
|
conferencemanager
|
Multiple cross-site scripting (XSS) vulnerabilities in myAddressBook.asp in Sonexis ConferenceManager 9.2.11.0 and 9.3.14.0 allow remote attackers to inject arbitrary web script or HTML via the (1) f…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3686
|
2024-11-21 10:30 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306690
|
- |
|
tembria
|
server_monitor
|
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to (1)…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3685
|
2024-11-21 10:30 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
