|
276161
|
- |
|
netatalk
|
netatalk
|
The papd daemon in Netatalk before 2.0.4-beta2, when using certain variables in a pipe command for the print file, allows remote attackers to execute arbitrary commands via shell metacharacters in a …
|
CWE-78
OS Command
|
CVE-2008-5718
|
2009-04-2 13:00 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276162
|
- |
|
drupal
|
drupal
print
|
Cross-site scripting (XSS) vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x before 5.x-4.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote at…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1047
|
2009-04-1 14:43 |
2009-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276163
|
- |
|
ibm
|
tivoli_storage_manager
|
Unspecified vulnerability in the server in IBM Tivoli Storage Manager (TSM) 5.3.x before 5.3.2 and 6.x before 6.1 has unknown impact and attack vectors related to the "admin command line."
|
NVD-CWE-noinfo
|
CVE-2009-1178
|
2009-04-1 13:00 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276164
|
- |
|
gallarific
|
gallarific
|
Multiple cross-site scripting (XSS) vulnerabilities in Gallarific Free Edition allow remote attackers to inject arbitrary web script or HTML via (1) the e-mail address, (2) a comment, which is not pr…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6567
|
2009-04-1 02:30 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276165
|
- |
|
linpha
|
linpha
|
Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.3.4 might allow remote attackers to inject arbitrary web script or HTML via (1) new_images.php, (2) login.php, and unspecified v…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6571
|
2009-04-1 02:30 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276166
|
- |
|
jax_scripts
|
jax_guestbook
|
Jax Guestbook 3.1 and 3.31 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain IP addresses of users via a direct request to (1) …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4880
|
2009-04-1 02:30 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276167
|
- |
|
valgrind
|
valgrind
|
Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated usi…
|
NVD-CWE-Other
|
CVE-2008-4865
|
2009-03-30 13:00 |
2008-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276168
|
- |
|
alecwh
|
phpns
|
Unspecified vulnerability in phpns before 2.1.3 has unknown impact and attack vectors related to "activation permissions."
|
NVD-CWE-noinfo
|
CVE-2008-6546
|
2009-03-30 13:00 |
2009-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276169
|
- |
|
moinmo
|
moinmoin
|
The password_checker function in config/multiconfig.py in MoinMoin 1.6.1 uses the cracklib and python-crack features even though they are not thread-safe, which allows remote attackers to cause a den…
|
NVD-CWE-noinfo
|
CVE-2008-6549
|
2009-03-30 13:00 |
2009-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276170
|
- |
|
lukas_ruf
|
muttprint
|
muttprint in muttprint 0.72d allows local users to overwrite arbitrary files via a symlink attack on the /tmp/muttprint.log temporary file.
|
CWE-59
Link Following
|
CVE-2008-5368
|
2009-03-26 14:47 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
