257441
|
- |
|
dlink
|
dcs-2121_firmware dcs-2121
|
/etc/rc.d/rc.local on the D-Link DCS-2121 camera with firmware 1.04 configures a hardcoded password of admin for the root account, which makes it easier for remote attackers to obtain shell access by…
|
CWE-255
Credentials Management
|
CVE-2010-4965
|
2012-05-14 13:00 |
2011-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257442
|
- |
|
atcom
|
netvolution
|
Cross-site scripting (XSS) vulnerability in default.asp in ATCOM Netvolution allows remote attackers to inject arbitrary web script or HTML via the query parameter in a Search action.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4966
|
2012-05-14 13:00 |
2011-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257443
|
- |
|
atcom
|
netvolution
|
SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ASP allows remote attackers to execute arbitrary SQL commands via the bpe_nid parameter.
|
CWE-89
SQL Injection
|
CVE-2009-5102
|
2012-05-14 13:00 |
2011-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257444
|
- |
|
atcom
|
netvolution
|
Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable.
|
CWE-79
Cross-site Scripting
|
CVE-2009-5103
|
2012-05-14 13:00 |
2011-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257445
|
- |
|
sun
|
opensolaris sunos
|
The labeled networking implementation in Solaris Trusted Extensions in Sun Solaris 10 and OpenSolaris snv_39 through snv_67, when a labeled zone is in the installed state, allows remote authenticated…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7300
|
2012-05-14 13:00 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257446
|
- |
|
gnome
|
empathy
|
Cross-site scripting (XSS) vulnerability in the theme_adium_append_message function in empathy-theme-adium.c in the Adium theme in libempathy-gtk in Empathy 3.2.1 and earlier allows remote attackers …
|
CWE-79
Cross-site Scripting
|
CVE-2011-4170
|
2012-05-13 13:00 |
2011-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257447
|
- |
|
nathanielkh
|
limit_my_call
|
The Limit My Call (com.limited.call.view) application 2.11 for Android does not properly protect data, which allows remote attackers to read or modify call logs and a contact list via a crafted appli…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4703
|
2012-05-13 13:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257448
|
- |
|
360
|
mobilesafe
|
The 360 MobileSafe (com.qihoo360.mobilesafe) application 2.x before 2.3.0 for Android does not properly protect data, which allows remote attackers to read or modify SMS messages and a contact list v…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4769
|
2012-05-13 13:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257449
|
- |
|
qiwi
|
wallet
|
The QIWI Wallet (ru.mw) application before 1.14.2 for Android does not properly protect data, which allows remote attackers to read or modify financial information via a crafted application.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4770
|
2012-05-13 13:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257450
|
- |
|
lucion
|
scan_to_pdf_free
|
The Scan to PDF Free (com.scan.to.pdf.trial) application 2.0.4 for Android does not properly protect data, which allows remote attackers to read or modify scanned files and a Google account via a cra…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4771
|
2012-05-13 13:00 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|