Max CVSS | 5.8 | Min CVSS | 5.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-5241 | 5.8 |
Services_Twitter 0.6.3 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary v
|
15-11-2012 - 05:00 | 06-11-2012 - 12:21 | |
CVE-2011-5242 | 5.8 |
tmhOAuth before 0.61 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary val
|
06-11-2012 - 12:21 | 06-11-2012 - 12:21 | |
CVE-2011-5236 | 5.8 |
Moneris eSelectPlus 2.03 PHP API does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an a
|
06-11-2012 - 12:21 | 06-11-2012 - 12:21 | |
CVE-2011-5243 | 5.8 |
TwitterOAuth does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certi
|
06-11-2012 - 12:21 | 06-11-2012 - 12:21 | |
CVE-2011-5239 | 5.8 |
CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary
|
06-11-2012 - 12:21 | 06-11-2012 - 12:21 | |
CVE-2011-5240 | 5.8 |
Magento 1.5 and 1.6.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary va
|
06-11-2012 - 12:21 | 06-11-2012 - 12:21 | |
CVE-2011-5238 | 5.8 |
google-checkout-php-sample-code before 1.3.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL serv
|
06-11-2012 - 12:21 | 06-11-2012 - 12:21 | |
CVE-2011-5237 | 5.8 |
PayPal WPS ToolKit does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid
|
06-11-2012 - 12:21 | 06-11-2012 - 12:21 |