|
310411
|
- |
|
xymon
|
xymon
|
Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-1716
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310412
|
- |
|
qooxdoo
|
qooxdoo
|
Directory traversal vulnerability in framework/source/resource/qx/test/part/delay.php in QooxDoo 1.3 and possibly other versions, as used in eyeOS 2.2 and 2.3, and possibly other products allows remo…
|
CWE-22
Path Traversal
|
CVE-2011-1715
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310413
|
- |
|
qooxdoo
|
qooxdoo
|
Cross-site scripting (XSS) vulnerability in framework/source/resource/qx/test/jsonp_primitive.php in QooxDoo 1.3 and possibly other versions, as used in eyeOS 2.2 and 2.3, and possibly other products…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1714
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310414
|
- |
|
otrs
|
otrs
|
Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.4.x before 2.4.10 and 3.x before 3.0.7 allow remote attackers to inject arbitrary web script or HTML via uns…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1518
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310415
|
- |
|
nicholas_marriott
|
tmux
|
tmux 1.3 and 1.4 does not properly drop group privileges, which allows local users to gain utmp group privileges via a filename to the -S command-line option.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1496
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310416
|
- |
|
realnetworks
|
realplayer
realplayer_sp
|
The OpenURLInDefaultBrowser method in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlayer SP 1.0 through 1.1.5, launches a default handler for the filename specified i…
|
NVD-CWE-Other
|
CVE-2011-1426
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310417
|
- |
|
broadcom
|
total_defense
|
The management.asmx module in the Management Web Service in the Unified Network Control (UNC) Server in CA Total Defense (TD) r12 before SE2 sends a cleartext response to unspecified getDBConfigSetti…
|
CWE-310
Cryptographic Issues
|
CVE-2011-1655
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310418
|
- |
|
broadcom
|
total_defense
|
Directory traversal vulnerability in the Heartbeat Web Service in CA.Itm.Server.ManagementWS.dll in the Management Server in CA Total Defense (TD) r12 before SE2 allows remote attackers to execute ar…
|
CWE-22
Path Traversal
|
CVE-2011-1654
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310419
|
- |
|
broadcom
|
total_defense
|
Multiple SQL injection vulnerabilities in the Unified Network Control (UNC) Server in CA Total Defense (TD) r12 before SE2 allow remote attackers to execute arbitrary SQL commands via vectors involvi…
|
CWE-89
SQL Injection
|
CVE-2011-1653
|
2024-11-21 10:26 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310420
|
- |
|
microsoft
|
internet_explorer
|
Microsoft msxml.dll, as used in Internet Explorer 8 on Windows 7, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call…
|
CWE-200
Information Exposure
|
CVE-2011-1713
|
2024-11-21 10:26 |
2011-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
