CVE List

Id CVE No. Status Description Phase Votes Comments Actions
51960  CVE-2011-4048  Candidate  The Dell KACE K2000 System Deployment Appliance has a default username and password for the read-only reporting account, which makes it easier for remote attackers to obtain sensitive information from the database by leveraging the default credentials.  Assigned (20111013)  None (candidate not yet proposed)    View
52216  CVE-2011-4304  Candidate  The chat functionality in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 allows remote authenticated users to discover the name of any user via a beep operation.  Assigned (20111104)  None (candidate not yet proposed)    View
52472  CVE-2011-4560  Candidate  Cross-site scripting (XSS) vulnerability in the Petition Node module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors related to signing a petition.  Assigned (20111128)  None (candidate not yet proposed)    View
52728  CVE-2011-4816  Candidate  SQL injection vulnerability in the KPI component in IBM Maximo Asset Management and Asset Management Essentials 6.2, 7.1, and 7.5; IBM Tivoli Asset Management for IT 6.2, 7.1, and 7.2; IBM Tivoli Service Request Manager 7.1 and 7.2; IBM Maximo Service Desk 6.2; and IBM Tivoli Change and Configuration Management Database (CCMDB) 6.2, 7.1, and 7.2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.  Assigned (20111214)  None (candidate not yet proposed)    View
52984  CVE-2011-5072  Candidate  Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) before 3.65 allow remote attackers to execute arbitrary SQL commands via the (1) start parameter to portal/kb.php; (2) contractid parameter to contract_add_service.php; (3) id parameter to edit_escalation_path.php; (4) unlock, (5) lock, or (6) selected parameter to holding_queue.php; inc parameter in a report action to (7) report_customers.php or (8) report_incidents_by_site.php; (9) start parameter to search.php; or (10) sites parameter to transactions.php.  Assigned (20120128)  None (candidate not yet proposed)    View

Page 20376 of 20943, showing 5 records out of 104715 total, starting on record 101876, ending on 101880

Actions