260331
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple cross-site scripting (XSS) vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to inject arbitrary web script or HTML via the (1) mode parameter to cont…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5073
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260332
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to hijack the authentication of administrators for requests that c…
|
CWE-352
Origin Validation Error
|
CVE-2011-5074
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260333
|
- |
|
sitracker
|
support_incident_tracker
|
translate.php in Support Incident Tracker (aka SiT!) 3.45 through 3.65 allows remote attackers to obtain sensitive information via a direct request using the save action, which reveals the installati…
|
NVD-CWE-noinfo
|
CVE-2011-5075
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260334
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple unspecified vulnerabilities in Salford Software Support Incident Tracker (SiT!) before 3.30 have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2007-5635
|
2012-02-2 14:00 |
2007-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260335
|
- |
|
cluster_resources clusterresources
|
torque_resource_manager
|
Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user account…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4925
|
2012-02-2 13:09 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260336
|
- |
|
hp
|
database_archiving_software
|
Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1213.
|
NVD-CWE-noinfo
|
CVE-2011-4163
|
2012-02-2 13:08 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260337
|
- |
|
hp
|
database_archiving_software
|
Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1214.
|
NVD-CWE-noinfo
|
CVE-2011-4164
|
2012-02-2 13:08 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260338
|
- |
|
hp
|
database_archiving_software
|
Unspecified vulnerability in HP Database Archiving Software 6.31 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1263.
|
NVD-CWE-noinfo
|
CVE-2011-4165
|
2012-02-2 13:08 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260339
|
- |
|
adobe
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in Remote Development Services (RDS) in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4368
|
2012-02-2 13:08 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260340
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in post_bug.cgi in Bugzilla 2.x, 3.x, and 4.x before 4.2rc1 allows remote attackers to hijack the authentication of arbitrary users for requests that c…
|
CWE-352
Origin Validation Error
|
CVE-2011-3668
|
2012-02-2 13:07 |
2012-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|