|
257601
|
- |
|
lucion
|
scan_to_pdf_free
|
The Scan to PDF Free (com.scan.to.pdf.trial) application 2.0.4 for Android does not properly protect data, which allows remote attackers to read or modify scanned files and a Google account via a cra…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4771
|
2012-05-13 13:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257602
|
- |
|
360
|
kouxin
|
The 360 KouXin (com.qihoo360.kouxin) application 1.5.3 for Android does not properly protect data, which allows remote attackers to read or modify SMS messages and a contact list via a crafted applic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4772
|
2012-05-13 13:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257603
|
- |
|
parallels
|
parallels_plesk_panel
|
Cross-site scripting (XSS) vulnerability in the Site Editor (aka SiteBuilder) feature in Parallels Plesk Panel 10.4.4_build20111103.18 allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4777
|
2012-05-13 13:00 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257604
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
CoreStorage in Apple Mac OS X 10.7 before 10.7.2 does not ensure that all disk data is encrypted during the enabling of FileVault, which makes it easier for physically proximate attackers to obtain s…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3212
|
2012-05-12 12:40 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257605
|
- |
|
7t
|
igss
|
Directory traversal vulnerability in dc.exe 9.00.00.11059 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to execute arbitrary programs via ..\ (dot do…
|
CWE-22
Path Traversal
|
CVE-2011-1566
|
2012-05-12 12:37 |
2011-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257606
|
- |
|
ruby-lang
|
ruby
|
The FileUtils.remove_entry_secure method in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, 1.8.8dev, 1.9.1 through 1.9.1-430, 1.9.2 through 1.9.2-136, and 1.9.3dev allows local users to delet…
|
CWE-59
Link Following
|
CVE-2011-1004
|
2012-05-12 12:36 |
2011-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257607
|
- |
|
apple
|
imageio
safari
|
Heap-based buffer overflow in ImageIO in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF image with CCI…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0241
|
2012-05-12 12:34 |
2011-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257608
|
- |
|
3com
|
3cp4144
|
3Com OfficeConnect Remote 812 ADSL Router, firmware 1.1.9 and 1.1.7, allows remote attackers to bypass port access restrictions by connecting to an approved port and quickly connecting to the desired…
|
NVD-CWE-Other
|
CVE-2002-0888
|
2012-05-12 10:16 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257609
|
- |
|
cisco
|
unified_meetingplace
|
SQL injection vulnerability in the web component in Cisco Unified MeetingPlace 7.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCtx08939.
|
CWE-89
SQL Injection
|
CVE-2012-0337
|
2012-05-11 13:00 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257610
|
- |
|
cisco
|
intrusion_prevention_system
|
The sensor in Cisco Intrusion Prevention System (IPS) 7.0 and 7.1 allows remote attackers to cause a denial of service (file-handle exhaustion and mainApp hang) by making authentication attempts that…
|
CWE-287
Improper Authentication
|
CVE-2011-4022
|
2012-05-11 13:00 |
2012-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
