267891
|
- |
|
zope
|
zope
|
http://www.zope.org/Products/Zope/Hotfix-2008-08-12/README.txt
Affected Versions
* Zope 2.7.0 to Zope 2.11.2
---
http://openwall.com/lists/oss-security/2008/11/12/2
Affected Conga versio…
|
CWE-399
Resource Management Errors
|
CVE-2008-5102
|
2009-09-1 14:21 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267892
|
- |
|
punbb
|
punbb
|
Cross-site scripting (XSS) vulnerability in PunBB 1.2.16 and earlier allows remote attackers to inject arbitrary web script or HTML via the get_host parameter to moderate.php.
|
CWE-79
Cross-site Scripting
|
CVE-2008-1485
|
2009-09-1 14:14 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267893
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre does not properly block data: URIs in Location headers in HTTP responses, which allows remote attackers to conduct cross-site scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3012
|
2009-09-1 13:00 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267894
|
- |
|
sun
|
opensolaris solaris
|
The sockfs module in the kernel in Sun Solaris 10 and OpenSolaris snv_41 through snv_122, when Network Cache Accelerator (NCA) logging is enabled, allows remote attackers to cause a denial of service…
|
CWE-399
Resource Management Errors
|
CVE-2009-3000
|
2009-08-31 13:00 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267895
|
- |
|
avant_force
|
avant_browser
|
Avant Browser 11.7 Builds 35 and 36 allows remote attackers to spoof the address bar, via window.open with a relative URI, to show an arbitrary URL on the web site visited by the victim, as demonstra…
|
NVD-CWE-Other
|
CVE-2009-3004
|
2009-08-31 13:00 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267896
|
- |
|
mrcgiguy
|
hot_links_sql-php
|
SQL injection vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and earlier allows remote attackers to execute arbitrary SQL commands via the news.php parameter.
|
CWE-89
SQL Injection
|
CVE-2008-7120
|
2009-08-29 00:30 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267897
|
- |
|
mrcgiguy
|
hot_links_sql-php
|
Cross-site scripting (XSS) vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the search bar.
|
CWE-79
Cross-site Scripting
|
CVE-2008-7121
|
2009-08-29 00:30 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267898
|
- |
|
cisco
|
aironet_ap1100 aironet_ap1200
|
The Over-the-Air Provisioning (OTAP) functionality on Cisco Aironet Lightweight Access Point 1100 and 1200 devices does not properly implement access-point association, which allows remote attackers …
|
NVD-CWE-Other
|
CVE-2009-2861
|
2009-08-28 13:00 |
2009-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267899
|
- |
|
google
|
chrome
|
Google Chrome 1.0.154.65, 1.0.154.48, and earlier allows remote attackers to (1) cause a denial of service (application hang) via vectors involving a chromehtml: URI value for the document.location p…
|
NVD-CWE-Other
|
CVE-2009-2974
|
2009-08-28 13:00 |
2009-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267900
|
- |
|
cisco
|
aironet_ap1100 aironet_ap1200
|
Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses an…
|
CWE-310
Cryptographic Issues
|
CVE-2009-2976
|
2009-08-28 13:00 |
2009-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|