268311
|
- |
|
cisco
|
application_control_engine_device_manager application_networking_manager
|
Directory traversal vulnerability in Cisco Application Networking Manager (ANM) before 2.0 and Application Control Engine (ACE) Device Manager before A3(2.1) allows remote authenticated users to read…
|
CWE-22
Path Traversal
|
CVE-2009-0615
|
2009-03-3 16:04 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268312
|
- |
|
cisco
|
application_networking_manager
|
Cisco Application Networking Manager (ANM) before 2.0 uses default usernames and passwords, which makes it easier for remote attackers to access the application, or cause a denial of service via conf…
|
CWE-255
Credentials Management
|
CVE-2009-0616
|
2009-03-3 16:04 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268313
|
- |
|
cisco
|
application_networking_manager
|
Cisco Application Networking Manager (ANM) before 2.0 uses a default MySQL root password, which makes it easier for remote attackers to execute arbitrary operating-system commands or change system fi…
|
CWE-255
Credentials Management
|
CVE-2009-0617
|
2009-03-3 16:04 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268314
|
- |
|
cisco
|
application_networking_manager
|
Unspecified vulnerability in the Java agent in Cisco Application Networking Manager (ANM) before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service (service outage…
|
NVD-CWE-Other
|
CVE-2009-0618
|
2009-03-3 16:04 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268315
|
- |
|
cisco
|
application_control_engine_module ace_4710
|
Unspecified vulnerability in the SNMPv2c implementation in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3) and Cisco ACE 4710 Application Contro…
|
NVD-CWE-Other
|
CVE-2009-0624
|
2009-03-3 16:04 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268316
|
- |
|
cisco
|
application_control_engine_module ace_4710
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml
"Note: SNMPv2c must be explicitly configured in an affected device in order to process any SNMPv2c transac…
|
NVD-CWE-Other
|
CVE-2009-0624
|
2009-03-3 16:04 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268317
|
- |
|
cisco
|
ace_4710 application_control_engine_module
|
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8…
|
CWE-94
Code Injection
|
CVE-2009-0625
|
2009-03-3 16:04 |
2009-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268318
|
- |
|
twiki
|
twiki
|
Eval injection vulnerability in TWiki before 4.2.4 allows remote attackers to execute arbitrary Perl code via the %SEARCH{}% variable.
|
CWE-94
Code Injection
|
CVE-2008-5305
|
2009-03-3 16:00 |
2008-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268319
|
- |
|
weber-ebusiness
|
wes_facilities
|
SQL injection vulnerability in the WEBERkommunal Facilities (wes_facilities) extension 2.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-6338
|
2009-03-2 14:00 |
2009-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268320
|
- |
|
mathieu_vidal
|
mv_vox_populi
|
Cross-site scripting (XSS) vulnerability in the Vox populi (mv_vox_populi) extension 0.3.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6340
|
2009-03-2 14:00 |
2009-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|