PT-2023-23125 · Unknown · Repetier Server

Name of the Vulnerable Software and Affected Versions: Repetier Server versions prior to 1.4.11 Description: The issue allows directory traversal for reading files that contain credentials. This can be demonstrated by accessing the connectionLost.php file. It is estimated that about 1,766 devices...

CVE-2021-0003

Improper conditions check in some IntelR Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure via local access...

PT-2021-17180 · Roundcube +1 · Roundcube +1

Name of the Vulnerable Software and Affected Versions: Roundcube versions prior to 1.4.11 Description: The issue allows for an XSS attack through crafted Cascading Style Sheets CSS token sequences during the rendering of HTML email. This can occur when an attacker sends a specially designed email...

PrestaShop Cross-Site Request Forgery Vulnerability

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, short message alerts and product image scaling and other features. A cross-site request forgery vulnerability exists in PrestaShop versions prior to...

PrestaShop Cross-Site Scripting Vulnerability (CNVD-2020-13058)

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, short message alerts and product image scaling and other features. A cross-site scripting vulnerability exists in PrestaShop versions prior to 1.4.11. T...

wireshark: NULL pointer vulnerabilities (wnpa-sec-2012-02)

Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted packet, related to epan/tostr.c...

DEBIAN-CVE-2012-0067

wiretap/iptrace.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service application crash via a long packet in an AIX iptrace file...

DEBIAN-CVE-2012-0041

The dissectpacket function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service application crash via a long packet in a capture file, as demonstrated by an airopeek file...

DEBIAN-CVE-2008-1688

Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries...