|
263671
|
- |
|
symantec
|
web_gateway
|
Multiple cross-site scripting (XSS) vulnerabilities in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0296
|
2012-05-23 01:37 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263672
|
- |
|
debian
|
texlive-extra-utils
|
latex2man in texlive-extra-utils 2011.20120322, and possibly other versions or packages, when used with the H or T option, allows local users to overwrite arbitrary files via a symlink attack on a te…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2120
|
2012-05-22 01:24 |
2012-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263673
|
- |
|
tembria
|
server_monitor
|
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to (1)…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3685
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263674
|
- |
|
sonexis
|
conferencemanager
|
Multiple cross-site scripting (XSS) vulnerabilities in myAddressBook.asp in Sonexis ConferenceManager 9.2.11.0 and 9.3.14.0 allow remote attackers to inject arbitrary web script or HTML via the (1) f…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3686
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263675
|
- |
|
tembria
|
server_monitor
|
Multiple cross-site scripting (XSS) vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via (1) the siteid parameter to log…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3684
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263676
|
- |
|
wibu
|
codemeter_webadmin
|
Cross-site scripting (XSS) vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote attackers to inject arbitrary web script or HTML via the BoxSerial parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3689
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263677
|
- |
|
netsaro
|
enterprise_messenger_server
|
NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base6…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3692
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263678
|
- |
|
netsaro
|
enterprise_messenger_server
|
NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file.
|
CWE-310
Cryptographic Issues
|
CVE-2011-3693
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263679
|
- |
|
netsaro
|
enterprise_messenger_server
|
The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL.
|
CWE-200
Information Exposure
|
CVE-2011-3694
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263680
|
- |
|
phpicalendar
|
php_icalendar
|
PHP iCalendar 2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by rss/rss_comm…
|
CWE-200
Information Exposure
|
CVE-2011-3780
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
