|
268081
|
- |
|
chad_phillips
|
logintoboggan
|
Unspecified vulnerability in LoginToboggan 6.x-1.x before 6.x-1.5, a module for Drupal, when "Allow users to login using their e-mail address" is enabled, allows remote blocked users to bypass intend…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2291
|
2009-07-1 22:00 |
2009-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268082
|
- |
|
adobe
|
shockwave_player
|
Unspecified vulnerability in Adobe Shockwave Player before 11.0.0.465 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2009-1860, related to a…
|
NVD-CWE-noinfo
|
CVE-2009-2186
|
2009-07-1 13:00 |
2009-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268083
|
- |
|
ad2000
|
free-sw_leger
|
Cross-site scripting (XSS) vulnerability in AD2000 free-sw leger (aka Web Conference Room Free) 1.6.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vector…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2240
|
2009-06-30 13:00 |
2009-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268084
|
- |
|
unisys
|
business_information_server
|
Stack-based buffer overflow in mnet.exe in Unisys Business Information Server (BIS) 10 and 10.1 on Windows allows remote attackers to execute arbitrary code via a crafted TCP packet.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1628
|
2009-06-29 13:00 |
2009-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268085
|
- |
|
paessler
|
prtg_traffic_grapher
prtg_traffic_grapher6.0.5.416
|
Cross-site scripting (XSS) vulnerability in the Monitor_Bandwidth function in PRTG Traffic Grapher 6.2.2.977 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1849
|
2009-06-29 13:00 |
2009-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268086
|
- |
|
microsoft
|
windows_2003_server
windows_vista
|
win32k.sys in Microsoft Windows Server 2003 and Vista allows local users to cause a denial of service (system crash) via vectors related to CreateWindow, TranslateMessage, and DispatchMessage, possib…
|
CWE-362
Race Condition
|
CVE-2008-6819
|
2009-06-29 13:00 |
2009-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268087
|
- |
|
peter_wolanin
|
openid
|
Cross-site scripting (XSS) vulnerability in OpenID 5.x before 5.x-1.2, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6835
|
2009-06-29 13:00 |
2009-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268088
|
- |
|
peter_wolanin
|
openid
|
Cross-site request forgery (CSRF) vulnerability in OpenID 5.x before 5x.-1.2, a module for Drupal, allows remote attackers to hijack the authentication of unspecified victims to delete OpenID identit…
|
CWE-352
Origin Validation Error
|
CVE-2008-6836
|
2009-06-29 13:00 |
2009-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268089
|
- |
|
foxitsoftware
|
jpeg2000_jbig2_decoder_add-on
foxit_reader
|
The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a fatal error during decoding of a JPEG2000 (aka JPX) header, which allows …
|
CWE-399
Resource Management Errors
|
CVE-2009-0691
|
2009-06-26 13:00 |
2009-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268090
|
- |
|
serendipitynz
|
serene_bach
|
SerendipityNZ (aka SimpleBoxes) Serene Bach 2.20R and earlier, and 3.00 beta023 and earlier 3.x versions, uses a predictable session id, which makes it easier for remote attackers to hijack sessions …
|
NVD-CWE-Other
|
CVE-2009-2165
|
2009-06-26 13:00 |
2009-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
