|
264691
|
- |
|
tibco
|
spotfire_analytics_server
spotfire_server
|
Per: http://cwe.mitre.org/data/definitions/384.html
'CWE-384: Session Fixation'
|
NVD-CWE-Other
|
CVE-2011-3133
|
2011-09-23 12:34 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264692
|
- |
|
tibco
|
spotfire_analytics_server
spotfire_server
|
Unspecified vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attac…
|
NVD-CWE-noinfo
|
CVE-2011-3134
|
2011-09-23 12:34 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264693
|
- |
|
geoff_wong
|
hammerhead
|
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on (1) /tmp/hammer.log (aka the HH_LOG file) or (2) the REPORT_LOG file.
|
CWE-59
Link Following
|
CVE-2011-3204
|
2011-09-23 12:34 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264694
|
- |
|
bcfg2
|
bcfg2
|
The server in Bcfg2 1.1.2 and earlier, and 1.2 prerelease, allows remote attackers to execute arbitrary commands via shell metacharacters in data received from a client.
|
CWE-20
Improper Input Validation
|
CVE-2011-3211
|
2011-09-23 12:34 |
2011-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264695
|
- |
|
ibm
|
lotus_domino
|
Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 8.5.2 allows remote attackers to inject arbitrary web script or HTML via the PanelIcon parameter in an fmpgPanelHeader ReadForm action to …
|
CWE-79
Cross-site Scripting
|
CVE-2011-3576
|
2011-09-23 12:34 |
2011-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264696
|
- |
|
chyrp
|
chyrp
|
upload_handler.php in the swfupload extension in Chyrp 2.0 and earlier relies on client-side JavaScript code to restrict the file extensions of uploaded files, which allows remote authenticated users…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2745
|
2011-09-22 12:32 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264697
|
- |
|
citrix
|
access_gateway
|
Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before 8.1-67.7, 9.0 before 9.0-70.5, and 9.1 before 9.1-96.4 allows …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2882
|
2011-09-22 12:32 |
2011-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264698
|
- |
|
hp
|
network_node_manager_i
|
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows local users to read or modify (1) log files or (2) other data via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-1855
|
2011-09-22 12:31 |
2011-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264699
|
- |
|
webmin
|
webmin
|
Cross-site scripting (XSS) vulnerability in Webmin 1.540 and earlier allows local users to inject arbitrary web script or HTML via a chfn command that changes the real (aka Full Name) field, related …
|
CWE-79
Cross-site Scripting
|
CVE-2011-1937
|
2011-09-22 12:31 |
2011-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264700
|
- |
|
inventivetec
|
mediacast
|
MediaCAST 8 and earlier stores passwords in cleartext, which makes it easier for context-dependent attackers to obtain sensitive information by reading an unspecified password data store, a different…
|
CWE-200
Information Exposure
|
CVE-2011-2076
|
2011-09-22 12:31 |
2011-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
