|
264031
|
- |
|
semanticscuttle
|
semanticscuttle
|
Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow remote attackers to (1) hijack the authentication of administrators via unknown vectors or (2) hijack t…
|
CWE-352
Origin Validation Error
|
CVE-2009-0708
|
2012-01-5 14:00 |
2009-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264032
|
- |
|
eeye
|
digital_security_audits
retina_network_security_scanner
|
eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gaun…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3337
|
2012-01-5 02:49 |
2012-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264033
|
- |
|
celeryproject
|
celery
|
Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before 2.4.4 changes the effective id but not the real id during processing of the --uid and --gid arguments to celerybeat, celeryd_detach, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4356
|
2012-01-4 01:38 |
2011-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264034
|
- |
|
ibm
|
rational_asset_manager
|
Cross-site scripting (XSS) vulnerability in IBM Rational Asset Manager before 7.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4708
|
2012-01-3 14:00 |
2011-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264035
|
- |
|
novell
|
xtier_framework
|
Multiple integer overflows in the HTTP server in the Novell XTier framework 3.1.8 allow remote attackers to cause a denial of service (service crash) or possibly execute arbitrary code via crafted he…
|
CWE-189
Numeric Errors
|
CVE-2011-1710
|
2012-01-2 14:00 |
2011-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264036
|
- |
|
tor
|
tor
|
Tor before 0.2.2.24-alpha continues to use a reachable bridge that was previously configured but is not currently configured, which might allow remote attackers to obtain sensitive information about …
|
CWE-200
Information Exposure
|
CVE-2011-4896
|
2011-12-30 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264037
|
- |
|
tor
|
tor
|
Tor before 0.2.2.25-alpha, when configured as a relay without the Nickname configuration option, uses the local hostname as the Nickname value, which allows remote attackers to obtain potentially sen…
|
CWE-200
Information Exposure
|
CVE-2011-4897
|
2011-12-30 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264038
|
- |
|
xzeroscripts
|
xzero_community_classifieds
|
Cross-site scripting (XSS) vulnerability in index.php in XZero Community Classifieds 4.97.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded file…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2914
|
2011-12-29 14:00 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264039
|
- |
|
goahead
|
goahead_webserver
|
GoAhead WebServer allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris.
|
CWE-399
Resource Management Errors
|
CVE-2009-5111
|
2011-12-28 23:46 |
2011-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264040
|
- |
|
dhttpd
|
dhttpd
|
dhttpd allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris.
|
CWE-399
Resource Management Errors
|
CVE-2009-5110
|
2011-12-28 23:42 |
2011-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
