|
267951
|
- |
|
cisco
|
ios_xr
|
Cisco IOS XR 3.4.0 through 3.8.1 allows remote attackers to cause a denial of service (session reset) via a BGP UPDATE message with an invalid attribute, as demonstrated in the wild on 17 August 2009.
|
CWE-20
Improper Input Validation
|
CVE-2009-2055
|
2009-08-21 13:00 |
2009-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267952
|
- |
|
edgewall
firestats
|
firestats
|
SQL injection vulnerability in the FireStats plugin before 1.6.2-stable for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-2144
|
2009-08-21 13:00 |
2009-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267953
|
- |
|
php.s3
|
tree_bbs
|
Cross-site scripting (XSS) vulnerability in Let's PHP! Tree BBS 2004/11/23 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2226
|
2009-08-21 13:00 |
2009-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267954
|
- |
|
clone2009
|
ebay_clone
|
Cross-site scripting (XSS) vulnerability in search.php in Ebay Clone 2009 allows remote attackers to inject arbitrary web script or HTML via the mode parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2424
|
2009-08-21 13:00 |
2009-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267955
|
- |
|
nasa_goddard_space_flight_center
|
common_data_format
|
Multiple buffer overflows in NASA Common Data Format (CDF) allow context-dependent attackers to execute arbitrary code, as demonstrated using (1) an array index error in the ReadAEDRList64 function, …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2850
|
2009-08-21 13:00 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267956
|
- |
|
ibm
|
db2
|
Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows attackers to cause a denial of service (memory consumption) via unspecified vectors, related to private memor…
|
CWE-399
Resource Management Errors
|
CVE-2009-2858
|
2009-08-21 13:00 |
2009-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267957
|
- |
|
ibm
|
db2
|
Unspecified vulnerability in db2jds in IBM DB2 8.1 before FP18 allows remote attackers to cause a denial of service (service crash) via "malicious packets."
|
NVD-CWE-noinfo
|
CVE-2009-2860
|
2009-08-21 13:00 |
2009-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267958
|
- |
|
datingpro
|
matchmaking
|
Multiple cross-site scripting (XSS) vulnerabilities in PG MatchMaking allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) browse_ladies.php and (2) browse_men.…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2882
|
2009-08-21 13:00 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267959
|
- |
|
siemens
|
gigaset_wlan_camera
|
Siemens Gigaset WLAN Camera 1.27 has an insecure default password, which allows remote attackers to conduct unauthorized activities. NOTE: the provenance of this information is unknown; the details a…
|
CWE-310
Cryptographic Issues
|
CVE-2008-6993
|
2009-08-21 13:00 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267960
|
- |
|
xzeroscripts
|
xzero_community_classifieds
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in XZero Community Classifieds 4.97.8 allow remote attackers to inject arbitrary web script or HTML via (1) the postevent parameter in…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2893
|
2009-08-21 02:30 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
