264781
|
- |
|
oracle
|
e-business_suite
|
Unspecified vulnerability in the Web ADI component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-0809
|
2011-04-20 13:00 |
2011-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264782
|
- |
|
ikiwiki
|
ikiwiki
|
ikiwiki before 3.20110328 does not ascertain whether the htmlscrubber plugin is enabled during processing of the "meta stylesheet" directive, which allows remote authenticated users to conduct cross-…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1401
|
2011-04-20 13:00 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264783
|
- |
|
rim
|
blackberry_enterprise_server blackberry_enterprise_server_express
|
Cross-site scripting (XSS) vulnerability in webdesktop/app in the BlackBerry Web Desktop Manager component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software before 5.0.2 MR5 and…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0286
|
2011-04-19 03:55 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264784
|
- |
|
redhat
|
spice-xpi
|
The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows local users to overwrite arbitrary files via a symlink attack on the usbrdrctl log file, which has a predictabl…
|
CWE-59
Link Following
|
CVE-2011-0012
|
2011-04-19 02:55 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264785
|
- |
|
honeywell
|
scanserver_activex_control
|
Use-after-free vulnerability in the addOSPLext method in the Honeywell ScanServer ActiveX control 780.0.20.5 allows remote attackers to execute arbitrary code via a crafted HTML document.
|
CWE-399
Resource Management Errors
|
CVE-2011-0331
|
2011-04-9 12:32 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264786
|
- |
|
cisco
|
telepresence_recording_server_software telepresence_recording_server
|
The CGI subsystem on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2 allows remote attackers to execute arbitrary commands via a request to TCP port 443, related to a "co…
|
CWE-78
OS Command
|
CVE-2011-0382
|
2011-04-9 12:32 |
2011-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264787
|
- |
|
cisco
|
adaptive_security_appliance_software 5500_series_adaptive_security_appliance asa_5500 telepresence_multipoint_switch_software telepresence_multipoint_switch telepresence_system_softwar…
|
Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0379
|
2011-04-9 12:32 |
2011-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264788
|
- |
|
cisco
|
telepresence_recording_server_software telepresence_recording_server telepresence_multipoint_switch_software telepresence_multipoint_switch
|
Cisco TelePresence Recording Server devices with software 1.6.x and Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x do not properly restrict remote ac…
|
CWE-399
Resource Management Errors
|
CVE-2011-0388
|
2011-04-9 12:32 |
2011-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264789
|
- |
|
micronetsoft
|
rv_dealer_website
|
Multiple SQL injection vulnerabilities in MicroNetsoft RV Dealer Website allow remote attackers to execute arbitrary SQL commands via the (1) selStock parameter to search.asp and the (2) orderBy para…
|
CWE-89
SQL Injection
|
CVE-2010-4362
|
2011-04-9 12:31 |
2010-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264790
|
- |
|
infradead
|
openconnect
|
OpenConnect before 2.26 places the webvpn cookie value in the debugging output, which might allow remote attackers to obtain sensitive information by reading this output, as demonstrated by output po…
|
CWE-200
Information Exposure
|
CVE-2010-3902
|
2011-04-9 12:29 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|