260491
|
- |
|
mawashimono
|
nikki
|
Directory traversal vulnerability in HP no Mawashimono Nikki 6.6 and earlier allows remote attackers to read and modify arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2011-4001
|
2011-12-14 14:00 |
2011-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260492
|
- |
|
mawashimono
|
nikki
|
HP no Mawashimono Nikki 6.6 and earlier allows remote attackers to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability."
|
CWE-78
OS Command
|
CVE-2011-4002
|
2011-12-14 14:00 |
2011-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260493
|
- |
|
urs_maag
|
maag_randomimage
|
Unspecified vulnerability in the Random Images (maag_randomimage) extension 1.6.4 and earlier for TYPO3 allows remote attackers to execute arbitrary shell commands via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2009-3819
|
2011-12-14 14:00 |
2009-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260494
|
- |
|
flagbit
|
fb_filebase
|
SQL injection vulnerability in the Flagbit Filebase (fb_filebase) extension 0.1.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-3820
|
2011-12-14 14:00 |
2009-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260495
|
- |
|
apache
|
solr
|
Cross-site scripting (XSS) vulnerability in the Apache Solr Search (solr) extension 1.0.0 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3821
|
2011-12-14 14:00 |
2009-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260496
|
- |
|
restorepoint
|
restorepoint
|
The Tadasoft Restorepoint 3.2 evaluation image uses weak permissions (www write access) for unspecified scripts, which allows local users to gain privileges by modifying a script file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4202
|
2011-12-13 23:57 |
2011-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260497
|
- |
|
restorepoint
|
restorepoint
|
remote_support.cgi in the Tadasoft Restorepoint 3.2 evaluation image allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) pid1 or (2) pid2 parameter in a stop_rem…
|
CWE-94
Code Injection
|
CVE-2011-4201
|
2011-12-13 20:55 |
2011-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260498
|
- |
|
freebsd
|
freebsd
|
Buffer overflow in the kernel in FreeBSD 7.3 through 9.0-RC1 allows local users to cause a denial of service (panic) or possibly gain privileges via a bind system call with a long pathname for a UNIX…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4062
|
2011-12-13 13:09 |
2011-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260499
|
- |
|
vmware
|
vcenter_update_manager
|
The default configuration of the HTTP server in Jetty in vSphere Update Manager in VMware vCenter Update Manager 4.0 before Update 4 and 4.1 before Update 2 allows remote attackers to conduct directo…
|
CWE-16
Configuration
|
CVE-2011-4404
|
2011-12-13 13:09 |
2011-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260500
|
- |
|
ibm
|
db2_tools_for_z\/os
|
The web-server component in the Consolidation and Analysis Engine (CAE) Server in DB2 Query Monitor in IBM DB2 Tools 2.3.0 for z/OS does not prevent directory browsing, which allows remote attackers …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4435
|
2011-12-13 13:09 |
2011-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|