|
257531
|
- |
|
typo3
|
aeurltool
|
Cross-site scripting (XSS) vulnerability in the UrlTool (aeurltool) extension 0.1.0 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1086
|
2012-02-29 14:00 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257532
|
- |
|
bluechip
|
bc_post2facebook
|
Cross-site scripting (XSS) vulnerability in the Post data records to facebook (bc_post2facebook) extension before 0.2.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via un…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1087
|
2012-02-29 14:00 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257533
|
- |
|
cisco
|
unified_communications_manager
ios
|
Memory leak in Cisco Unified Communications Manager (CUCM) 6.x before 6.1(5)su2, 7.x before 7.1(5b)su3, 8.x before 8.0(3a)su1, and 8.5 before 8.5(1), and Cisco IOS 12.4 and 15.1, allows remote attack…
|
CWE-399
Resource Management Errors
|
CVE-2011-0941
|
2012-02-29 14:00 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257534
|
- |
|
infor
|
eclient
enspire_distribution_management_solution
|
SQL injection vulnerability in eClient 7.3.2.3 in Enspire Distribution Management Solution 7.3.2.7 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2011-1915
|
2012-02-29 14:00 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257535
|
- |
|
investintech
|
slimpdf_reader
|
Investintech.com SlimPDF Reader does not properly restrict read operations during block data moves, which allows remote attackers to cause a denial of service (application crash) or possibly execute …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4217
|
2012-02-29 14:00 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257536
|
- |
|
process-one
|
ejabberd
|
The mod_pubsub module (mod_pubsub.erl) in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service (infinite loop) via a stanza with a publish tag that lacks a …
|
CWE-399
Resource Management Errors
|
CVE-2011-4320
|
2012-02-29 14:00 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257537
|
- |
|
typo3
|
typo3
|
PHP remote file inclusion vulnerability in Classes/Controller/AbstractController.php in the workspaces system extension in TYPO3 4.5.x before 4.5.9, 4.6.x before 4.6.2, and development versions of 4.…
|
CWE-94
Code Injection
|
CVE-2011-4614
|
2012-02-29 14:00 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257538
|
- |
|
tencent
|
mobileqq
|
The Tencent MobileQQ (com.tencent.mobileqq) application 2.2 for Android does not properly protect data, which allows remote attackers to read or modify messages and a friends list via a crafted appli…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4864
|
2012-02-29 14:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257539
|
- |
|
tencent
|
microblogpad
wblog
|
The Tencent WBlog (com.tencent.WBlog) 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search key…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4865
|
2012-02-29 14:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257540
|
- |
|
netcreators
|
irfaq
|
Open redirect vulnerability in the Modern FAQ (irfaq) extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing a…
|
CWE-20
Improper Input Validation
|
CVE-2011-5079
|
2012-02-29 14:00 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
