|
268361
|
- |
|
bizdirectory
|
bizdirectory
|
Cross-site scripting (XSS) vulnerability in BizDirectory 2.04 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter in a search action to the default URI.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3941
|
2009-01-29 15:54 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268362
|
- |
|
openbsd
|
openssh
|
sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled, immediately closes the TCP connection after a root login attempt with the correct password, but leaves the connection open after an attempt wi…
|
CWE-16
Configuration
|
CVE-2004-2760
|
2009-01-29 14:37 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268363
|
- |
|
netscape
|
navigator
|
Netscape 4 sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
|
CWE-200
Information Exposure
|
CVE-2003-1560
|
2009-01-29 14:28 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268364
|
- |
|
opera
|
opera
|
Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer …
|
NVD-CWE-noinfo
CWE-200
Information Exposure
|
CVE-2003-1561
|
2009-01-29 14:28 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268365
|
- |
|
webhelpdesk
|
web_help_desk
|
Cross-site scripting (XSS) vulnerability in Web Help Desk before 9.1.18 allows remote attackers to inject arbitrary web script or HTML via vectors related to "encoded JavaScript" and Helpdesk.woa.
|
CWE-79
Cross-site Scripting
|
CVE-2009-0303
|
2009-01-28 14:00 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268366
|
- |
|
ipswitch
|
imail
|
Multiple buffer overflows in Ipswitch IMail before 2006.21 allow remote attackers or authenticated users to execute arbitrary code via (1) the authentication feature in IMailsec.dll, which triggers h…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-2795
|
2009-01-28 14:00 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268367
|
- |
|
ryneezy
|
phosheezy
|
Static code injection vulnerability in admin.php in Ryneezy phoSheezy 0.2 allows remote authenticated administrators to inject arbitrary PHP code into config/header via the header parameter. NOTE: t…
|
CWE-94
Code Injection
|
CVE-2009-0275
|
2009-01-27 05:30 |
2009-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268368
|
- |
|
trilogic
|
media_player
|
Stack-based buffer overflow in Triologic Media Player 8.0.0.0 allows user-assisted remote attackers to execute arbitrary code via a long string in a .m3l playlist file. NOTE: the provenance of this …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0266
|
2009-01-27 00:30 |
2009-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268369
|
- |
|
bsdi
caldera
redhat
|
bsd_os
openlinux
linux
|
Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-1999-0002
|
2009-01-26 14:00 |
1998-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268370
|
- |
|
apple
|
safari
|
An unspecified function in the JavaScript implementation in Apple Safari creates and exposes a "temporary footprint" when there is a current login to a web site, which makes it easier for remote atta…
|
NVD-CWE-Other
|
CVE-2008-5914
|
2009-01-24 00:44 |
2009-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
