257481
|
- |
|
sonexis
|
conferencemanager
|
Multiple cross-site scripting (XSS) vulnerabilities in myAddressBook.asp in Sonexis ConferenceManager 9.2.11.0 and 9.3.14.0 allow remote attackers to inject arbitrary web script or HTML via the (1) f…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3686
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257482
|
- |
|
tembria
|
server_monitor
|
Multiple cross-site scripting (XSS) vulnerabilities in Tembria Server Monitor before 6.0.5 Build 2252 allow remote attackers to inject arbitrary web script or HTML via (1) the siteid parameter to log…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3684
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257483
|
- |
|
wibu
|
codemeter_webadmin
|
Cross-site scripting (XSS) vulnerability in Licenses.html in Wibu-Systems CodeMeter WebAdmin 3.30 and 4.30 allows remote attackers to inject arbitrary web script or HTML via the BoxSerial parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3689
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257484
|
- |
|
netsaro
|
enterprise_messenger_server
|
NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base6…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3692
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257485
|
- |
|
netsaro
|
enterprise_messenger_server
|
NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file.
|
CWE-310
Cryptographic Issues
|
CVE-2011-3693
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257486
|
- |
|
netsaro
|
enterprise_messenger_server
|
The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL.
|
CWE-200
Information Exposure
|
CVE-2011-3694
|
2012-05-21 13:00 |
2011-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257487
|
- |
|
phpicalendar
|
php_icalendar
|
PHP iCalendar 2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by rss/rss_comm…
|
CWE-200
Information Exposure
|
CVE-2011-3780
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257488
|
- |
|
phpids
|
phpids
|
PHPIDS 0.6.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/IDS/Version…
|
CWE-200
Information Exposure
|
CVE-2011-3781
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257489
|
- |
|
phplinkdirectory
|
phpld
|
phpLD 2-151.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by libs/smarty/Sm…
|
CWE-200
Information Exposure
|
CVE-2011-3782
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257490
|
- |
|
phpmyfaq
|
phpmyfaq
|
phpMyFAQ 2.6.13 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lang/language_…
|
CWE-200
Information Exposure
|
CVE-2011-3783
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|