258551
|
- |
|
emc centos
|
documentum_content_server centos
|
Unspecified vulnerability in EMC Documentum Content Server 6.0, 6.5 before SP2 P02, 6.5 SP3 before SP3 P02, and 6.6 before P02 allows local users to obtain "highest super user privileges" by leveragi…
|
NVD-CWE-noinfo
|
CVE-2011-4144
|
2012-02-16 14:00 |
2012-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258552
|
- |
|
htc
|
desire_hd desire_s droid_incredible evo_3d evo_4g glacier sensation_4g sensation_z710e thunderbolt_4g
|
Multiple HTC Android devices including Desire HD FRG83D and GRI40, Glacier FRG83, Droid Incredible FRF91, Thunderbolt 4G FRG83D, Sensation Z710e GRI40, Sensation 4G GRI40, Desire S GRI40, EVO 3D GRI4…
|
CWE-200
Information Exposure
|
CVE-2011-4872
|
2012-02-16 14:00 |
2012-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258553
|
- |
|
apache
|
tomcat
|
Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching and recycling operations involving request objects, which allows remote attackers to obtain uninten…
|
CWE-200
Information Exposure
|
CVE-2011-3375
|
2012-02-16 13:16 |
2012-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258554
|
- |
|
glpi-project
|
glpi
|
The autocompletion functionality in GLPI before 0.80.2 does not blacklist certain username and password fields, which allows remote attackers to obtain sensitive information via a crafted POST reques…
|
CWE-200
Information Exposure
|
CVE-2011-2720
|
2012-02-16 13:15 |
2011-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258555
|
- |
|
cacti
|
cacti
|
SQL injection vulnerability in graph.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via a crafted rra_id parameter in a GET request in conjunction with a va…
|
CWE-89
SQL Injection
|
CVE-2010-2092
|
2012-02-16 13:04 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258556
|
- |
|
cacti
|
cacti
|
Cacti before 0.8.7f, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters…
|
CWE-20
Improper Input Validation
|
CVE-2010-1645
|
2012-02-16 13:03 |
2010-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258557
|
- |
|
cacti
|
cacti
|
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-1431
|
2012-02-16 13:02 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258558
|
- |
|
netcreators
|
irfaq
|
Cross-site scripting (XSS) vulnerability in the Modern FAQ (irfaq) extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspeci…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1070
|
2012-02-16 03:18 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258559
|
- |
|
manfred_egger
|
bc_post2facebook
|
SQL injection vulnerability in the Post data records to facebook (bc_post2facebook) extension before 0.2.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-1077
|
2012-02-15 14:00 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258560
|
- |
|
juergen_furrer
|
jftcaforms
|
Cross-site scripting (XSS) vulnerability in lib/class.tx_jftcaforms_tceFunc.php in the Additional TCA Forms (jftcaforms) extension before 0.2.1 for TYPO3 allows remote attackers to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5080
|
2012-02-15 14:00 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|