270361
|
- |
|
memcachedb
|
memcached
|
Multiple integer overflows in memcached 1.1.12 and 1.2.2 allow remote attackers to execute arbitrary code via vectors involving length attributes that trigger heap-based buffer overflows.
|
CWE-189
Numeric Errors
|
CVE-2009-2415
|
2009-12-19 15:56 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270362
|
- |
|
hp
|
openview_network_node_manager
|
Stack-based buffer overflow in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted HTTP request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0898
|
2009-12-19 15:53 |
2009-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270363
|
- |
|
toni_milovan
|
fe_rtenews
|
Cross-site scripting (XSS) vulnerability in the Frontend news submitter with RTE (fe_rtenews) extension 1.4.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2009-4346
|
2009-12-18 14:00 |
2009-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270364
|
- |
|
haroldbakker
|
hb-ns
|
Cross-site scripting (XSS) vulnerability in index.php in Harold Bakker's NewsScript (HB-NS) 1.3 allows remote attackers to inject arbitrary web script or HTML via the topic parameter in a topic actio…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4348
|
2009-12-18 14:00 |
2009-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270365
|
- |
|
boldfx
|
arctic_issue_tracker
|
SQL injection vulnerability in index.php in Arctic Issue Tracker 2.1.1 allows remote attackers to execute arbitrary SQL commands via the (1) matchings[id] or (2) matchings[title] parameters in a Logi…
|
CWE-89
SQL Injection
|
CVE-2009-4350
|
2009-12-18 14:00 |
2009-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270366
|
- |
|
an_searchit
|
an_searchit
|
Cross-site scripting (XSS) vulnerability in the [AN] Search it! (an_searchit) extension 2.4.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4161
|
2009-12-17 14:00 |
2009-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270367
|
- |
|
ibm
|
db2
|
Unspecified vulnerability in the Engine Utilities component in IBM DB2 9.5 before FP5 allows remote authenticated users to cause a denial of service (segmentation fault) by modifying the db2ra data s…
|
NVD-CWE-noinfo
|
CVE-2009-4329
|
2009-12-17 14:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270368
|
- |
|
white_dune
|
white_dune
|
Multiple format string vulnerabilities in White_Dune before 0.29beta851 have unspecified impact and attack vectors, a different vulnerability than CVE-2008-0101.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2008-7228
|
2009-12-17 14:00 |
2009-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270369
|
- |
|
sun
|
ray_server_software
|
Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking (AMGH) is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for phy…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4314
|
2009-12-15 14:00 |
2009-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270370
|
- |
|
zeeways
|
zeelyrics
|
Cross-site scripting (XSS) vulnerability in searchresults_main.php in ZeeLyrics 3x allows remote attackers to inject arbitrary web script or HTML via the keyword parameter. NOTE: the provenance of t…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4316
|
2009-12-15 14:00 |
2009-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|