264811
|
- |
|
sun
|
java_system_web_server
|
Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote attackers to read arbitrary JSP…
|
CWE-200
Information Exposure
|
CVE-2009-2445
|
2011-08-29 13:00 |
2009-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264812
|
- |
|
mojolicious
|
mojolicious
|
Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified impact and remote attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2010-4802
|
2011-08-27 12:46 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264813
|
- |
|
mojolicious
|
mojolicious
|
Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2010-4803
|
2011-08-27 12:46 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264814
|
- |
|
alexej_kryukov
|
fontforge
|
Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long CHARSET_REGISTRY header in a B…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4259
|
2011-08-27 12:45 |
2010-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264815
|
- |
|
dovecot
|
dovecot
|
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a direc…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3707
|
2011-08-27 12:44 |
2010-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264816
|
- |
|
dovecot
|
dovecot
|
Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause a denial of service (master process outage) by simultaneously disconnecting many (1) IMAP or (2) POP3 sessions.
|
NVD-CWE-Other
|
CVE-2010-3780
|
2011-08-27 12:44 |
2010-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264817
|
- |
|
libguestfs
|
libguestfs
|
libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files …
|
CWE-200
Information Exposure
|
CVE-2010-3851
|
2011-08-27 12:44 |
2010-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264818
|
- |
|
otrs
|
otrs
|
webscript.pl in Open Ticket Request System (OTRS) 2.3.4 and earlier allows remote attackers to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability."
|
CWE-78
OS Command
|
CVE-2011-0456
|
2011-08-26 13:00 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264819
|
- |
|
aimluck
|
aipo aipo-asp
|
SQL injection vulnerability in Aimluck Aipo before 5.1.1, and Aipo for ASP before 5.1.1, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2011-1342
|
2011-08-26 13:00 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264820
|
- |
|
t-dreams
|
cars_ads_package
|
SQL injection vulnerability in processview.asp in Techno Dreams (T-Dreams) Cars Ads Package 2.0 allows remote attackers to execute arbitrary SQL commands via the key parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4829
|
2011-08-25 13:00 |
2011-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|