|
259351
|
- |
|
phpwebgallery
|
phpwebgallery
|
Multiple SQL injection vulnerabilities in PhpWebGallery 1.5.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) since, (2) sort_by, and (3) items_number parameters to c…
|
CWE-89
SQL Injection
|
CVE-2005-4228
|
2011-03-7 14:00 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259352
|
- |
|
envolution
|
envolution
|
SQL injection vulnerability in the News module in Envolution allows remote attackers to execute arbitrary SQL commands via the (1) startrow and (2) catid parameter.
|
CWE-89
SQL Injection
|
CVE-2005-4263
|
2011-03-7 14:00 |
2005-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259353
|
- |
|
qualcomm
|
worldmail
|
Stack-based buffer overflow in Qualcomm WorldMail 3.0 allows remote attackers to execute arbitrary code via a long IMAP command that ends with a "}" character, as demonstrated using long (1) LIST, (2…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-4267
|
2011-03-7 14:00 |
2005-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259354
|
- |
|
nicplex
|
plexcart_x3
|
SQL injection vulnerability in the search function in Plexum PLEXCART X3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly involving the (1) s_itemname and (…
|
CWE-89
SQL Injection
|
CVE-2005-4315
|
2011-03-7 14:00 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259355
|
- |
|
ibm
|
lotus_connections
|
IBM Lotus Connections 3.0, when IBM WebSphere Application Server 7.0.0.11 is used, does not properly restrict access to the internal login module, which has unspecified impact and attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1032
|
2011-03-1 16:08 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259356
|
- |
|
gnome
|
tomboy
|
The (1) tomboy and (2) tomboy-panel scripts in GNOME Tomboy 1.5.2 and earlier place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse…
|
CWE-94
Code Injection
|
CVE-2010-4005
|
2011-03-1 16:06 |
2010-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259357
|
- |
|
mutare
|
evm
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Mutare EVM allow remote attackers to hijack the authentication of arbitrary users for requests that (1) change a PIN, (2) delete messages…
|
CWE-352
Origin Validation Error
|
CVE-2011-1104
|
2011-03-1 14:00 |
2011-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259358
|
- |
|
ibm
|
lotus_domino
|
Buffer overflow in nLDAP.exe in IBM Lotus Domino allows remote attackers to execute arbitrary code via a long string in an LDAP Bind operation, aka SPR KLYH87LMVX.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0917
|
2011-02-25 15:58 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259359
|
- |
|
djangoproject
|
django
|
Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session …
|
CWE-22
Path Traversal
|
CVE-2011-0698
|
2011-02-23 15:48 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259360
|
- |
|
ibm
|
lotus_domino
|
Stack-based buffer overflow in ndiiop.exe in the DIIOP implementation in the server in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via a GIOP getEnvironmentString …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0913
|
2011-02-23 15:48 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
