260491
|
- |
|
microsoft
|
windows_2000 windows_2003_server windows_7 windows_server_2008 windows_vista windows_xp
|
Microsoft Windows 2008, 7, Vista, 2003, 2000, and XP, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast add…
|
CWE-200
Information Exposure
|
CVE-2010-4562
|
2012-02-3 14:00 |
2012-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260492
|
- |
|
linux
|
linux_kernel
|
The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo…
|
CWE-200
Information Exposure
|
CVE-2010-4563
|
2012-02-3 14:00 |
2012-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260493
|
- |
|
sitracker
|
support_incident_tracker
|
Static code injection vulnerability in translate.php in Support Incident Tracker (aka SiT!) 3.45 through 3.65 allows remote attackers to inject arbitrary PHP code into an executable language file in …
|
CWE-94
Code Injection
|
CVE-2011-4337
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260494
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) before 3.64 allow remote attackers to execute arbitrary SQL commands via the (1) exc[] parameter to report_marketing.php,…
|
CWE-89
SQL Injection
|
CVE-2011-5071
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260495
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to execute arbitrary SQL commands via the (1) start parameter to portal/kb.php; (2) co…
|
CWE-89
SQL Injection
|
CVE-2011-5072
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260496
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple cross-site scripting (XSS) vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to inject arbitrary web script or HTML via the (1) mode parameter to cont…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5073
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260497
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to hijack the authentication of administrators for requests that c…
|
CWE-352
Origin Validation Error
|
CVE-2011-5074
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260498
|
- |
|
sitracker
|
support_incident_tracker
|
translate.php in Support Incident Tracker (aka SiT!) 3.45 through 3.65 allows remote attackers to obtain sensitive information via a direct request using the save action, which reveals the installati…
|
NVD-CWE-noinfo
|
CVE-2011-5075
|
2012-02-2 14:00 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260499
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple unspecified vulnerabilities in Salford Software Support Incident Tracker (SiT!) before 3.30 have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2007-5635
|
2012-02-2 14:00 |
2007-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260500
|
- |
|
cluster_resources clusterresources
|
torque_resource_manager
|
Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user account…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4925
|
2012-02-2 13:09 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|