268341
|
- |
|
sapporoworks
|
blackjumbodog
|
SapporoWorks BlackJumboDog (BJD) before 4.2.3 allows remote attackers to bypass authentication and obtain sensitive information via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2008-5721
|
2009-02-26 16:04 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268342
|
- |
|
eterm
|
eterm
|
Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: realistic attac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1692
|
2009-02-26 15:51 |
2008-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268343
|
- |
|
aterm eterm mrxvt multi-aterm rxvt rxvt-unicode wterm
|
aterm eterm mrxvt multi-aterm rxvt rxvt-unicode wterm
|
rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1142
|
2009-02-26 14:00 |
2008-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268344
|
- |
|
rakhisoftware
|
rakhisoftware_shopping_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote attackers to inject arbitrary web script or HTML via the (…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6278
|
2009-02-26 14:00 |
2009-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268345
|
- |
|
rakhisoftware
|
rakhisoftware_shopping_cart
|
RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error mess…
|
CWE-200
Information Exposure
|
CVE-2008-6279
|
2009-02-26 14:00 |
2009-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268346
|
- |
|
tor
|
tor
|
Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attackers, with control of an entry router and an exit router, to confirm that a sender and receiver are communicating via vectors invol…
|
NVD-CWE-Other
|
CVE-2009-0654
|
2009-02-25 14:00 |
2009-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268347
|
- |
|
standards_based_linux_instrumentation
|
sblim-sfcb
|
The SSL certificate setup program (genSslCert.sh) in Standards Based Linux Instrumentation for Manageability (SBLIM) sblim-sfcb 1.3.2 allows local users to overwrite arbitrary files via a symlink att…
|
CWE-59
Link Following
|
CVE-2009-0416
|
2009-02-20 15:47 |
2009-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268348
|
- |
|
xine
|
xine-lib
|
Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to the lack of details, it is not clear whether this is an issue in xine-lib o…
|
NVD-CWE-noinfo
|
CVE-2008-5244
|
2009-02-20 15:45 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268349
|
- |
|
sourceforge
|
wow_raid_manager
|
Cross-site scripting (XSS) vulnerability in WOW Raid Manager (WRM) before 3.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6161
|
2009-02-19 14:00 |
2009-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268350
|
- |
|
hitachi
|
jp1_integrated_management_service_support
|
Cross-site scripting (XSS) vulnerability in Hitachi JP1/Integrated Management - Service Support 08-10 through 08-10-05, 08-11 through 08-11-03, and 08-50 through 08-50-03 on Windows allows remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5717
|
2009-02-18 15:25 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|