|
276171
|
- |
|
drupal
|
print
|
Unspecified vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x before 5.x-4.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to send…
|
NVD-CWE-noinfo
|
CVE-2009-1037
|
2009-03-26 13:00 |
2009-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276172
|
- |
|
sun
|
java_system_identity_manager
|
Sun Java System Identity Manager (IdM) 7.0 through 8.0 responds differently to failed use of the end-user question-based login feature depending on whether the user account exists, which allows remot…
|
CWE-200
Information Exposure
|
CVE-2009-1076
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276173
|
- |
|
sun
|
java_system_identity_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager (IdM) 7.0 through 8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, ak…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1081
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276174
|
- |
|
sun
|
java_system_identity_manager
|
Sun Java System Identity Manager (IdM) 7.0 through 8.0 allows remote authenticated users to gain privileges by submitting crafted commands to the Admin Console, as demonstrated by privileges for acco…
|
CWE-20
Improper Input Validation
|
CVE-2009-1082
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276175
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote authenticated users to conduct cross-site scripting (XSS) and related attacks by uploading HTML and …
|
CWE-79
Cross-site Scripting
|
CVE-2009-0481
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276176
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla before 3.2 before 3.2.1, 3.3 before 3.3.2, and other versions before 3.2 allows remote attackers to perform bug updating activities as othe…
|
CWE-352
Origin Validation Error
|
CVE-2009-0482
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276177
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.22 before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete keywords and user preference…
|
CWE-352
Origin Validation Error
|
CVE-2009-0483
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276178
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag t…
|
CWE-352
Origin Validation Error
|
CVE-2009-0484
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276179
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or …
|
CWE-352
Origin Validation Error
|
CVE-2009-0485
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276180
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 3.2.1, 3.0.7, and 3.3.2, when running under mod_perl, calls the srand function at startup time, which causes Apache children to have the same seed and produce insufficiently random numbers f…
|
CWE-352
Origin Validation Error
|
CVE-2009-0486
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
