|
308851
|
- |
|
vanillaforums
|
vanilla
|
Open redirect vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the Target parameter to an uns…
|
CWE-20
Improper Input Validation
|
CVE-2011-0908
|
2024-11-21 10:25 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308852
|
- |
|
awcm-cms
|
ar_web_content_manager
|
Multiple directory traversal vulnerabilities in AR Web Content Manager (AWCM) 2.2 allow remote attackers to read arbitrary files and possibly have other unspecified impact via a .. (dot dot) in the (…
|
CWE-22
Path Traversal
|
CVE-2011-0903
|
2024-11-21 10:25 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308853
|
- |
|
oracle
|
sun_microsystems_sunscreen_firewall
|
Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified (1) PATH or (2) LD_LI…
|
NVD-CWE-Other
|
CVE-2011-0902
|
2024-11-21 10:25 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308854
|
- |
|
erick_woods
|
terminal_server_client
|
Multiple stack-based buffer overflows in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allow user-assisted remote attackers t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0901
|
2024-11-21 10:25 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308855
|
- |
|
erick_woods
|
terminal_server_client
|
Stack-based buffer overflow in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allows user-assisted remote attackers to execute…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0900
|
2024-11-21 10:25 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308856
|
- |
|
johan_lindskog
|
aes_encryption_module
|
The AES encryption module 7.x-1.4 for Drupal leaves certain debugging code enabled in release, which records the plaintext password of the last logged-in user and allows remote attackers to gain priv…
|
NVD-CWE-Other
|
CVE-2011-0899
|
2024-11-21 10:25 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308857
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
Integer signedness error in the btrfs_ioctl_space_info function in the Linux kernel 2.6.37 allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified ot…
|
CWE-362
CWE-787
Race Condition
Out-of-bounds Write
|
CVE-2011-0699
|
2024-11-21 10:24 |
2020-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308858
|
8.8 |
HIGH
Network
|
batavi
|
batavi
|
Batavi before 1.0 has CSRF.
|
CWE-352
Origin Validation Error
|
CVE-2011-0525
|
2024-11-21 10:24 |
2020-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308859
|
7.5 |
HIGH
Network
|
weborf_project
debian
|
weborf
debian_linux
|
Weborf before 0.12.5 is affected by a Denial of Service (DOS) due to malformed fields in HTTP.
|
CWE-20
Improper Input Validation
|
CVE-2011-0529
|
2024-11-21 10:24 |
2019-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308860
|
9.8 |
CRITICAL
Network
|
gksu-polkit_project
debian
|
gksu-polkit
debian_linux
|
In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session.
|
CWE-20
Improper Input Validation
|
CVE-2011-0703
|
2024-11-21 10:24 |
2019-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
