270621
|
- |
|
mozilla
|
firefox
|
The browser engine in Mozilla Firefox 3.5.x before 3.5.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2662
|
2009-09-4 14:28 |
2009-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270622
|
- |
|
mozilla
|
firefox
|
The nsDocument::SetScriptGlobalObject function in content/base/src/nsDocument.cpp in Mozilla Firefox 3.5.x before 3.5.2, when certain add-ons are enabled, does not properly handle a Link HTTP header,…
|
CWE-94
Code Injection
|
CVE-2009-2665
|
2009-09-4 14:28 |
2009-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270623
|
- |
|
aom-software
|
beex
|
Multiple cross-site scripting (XSS) vulnerabilities in AOM Software Beex 3 allow remote attackers to inject arbitrary web script or HTML via the navaction parameter to (1) news.php and (2) partnerall…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3057
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270624
|
- |
|
allpublication
|
jboard
|
Multiple SQL injection vulnerabilities in Joker Board (aka JBoard) 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via (1) core/select.php or (2) the city parameter to top_ad…
|
CWE-89
SQL Injection
|
CVE-2009-3059
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270625
|
- |
|
alqa6ari
|
script_q_r
|
SQL injection vulnerability in lesson.php in Alqatari Q R Script 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from thi…
|
CWE-89
SQL Injection
|
CVE-2009-3061
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270626
|
- |
|
webformatique
|
reservation_manager
|
Cross-site scripting (XSS) vulnerability in index.php in Reservation Manager allows remote attackers to inject arbitrary web script or HTML via the resman_startdate parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3067
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270627
|
- |
|
ibm
|
lotus_notes
|
Unspecified vulnerability in nlnotes.dll in the client in IBM Lotus Notes 6.5, 7.0.x before 7.0.2 CCH, and 8.0.x before 8.0.1 allows remote attackers to execute arbitrary code via a crafted attachmen…
|
CWE-94
Code Injection
|
CVE-2008-1217
|
2009-09-3 13:00 |
2008-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270628
|
- |
|
intralearn
|
intralearn
|
Multiple cross-site scripting (XSS) vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2008-7147
|
2009-09-3 13:00 |
2009-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270629
|
- |
|
synfig
|
synfigstudio
|
Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file.
|
NVD-CWE-noinfo
|
CVE-2008-7148
|
2009-09-3 13:00 |
2009-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270630
|
- |
|
bcoos
|
bcoos
|
SQL injection vulnerability in modules/adresses/ratefile.php in bcoos 1.0.10 and earlier allows remote attackers to execute arbitrary SQL commands via the lid parameter, a different vector than CVE-2…
|
CWE-89
SQL Injection
|
CVE-2007-6275
|
2009-09-3 13:00 |
2007-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|