271131
|
- |
|
moinmo
|
moinmoin
|
The password_checker function in config/multiconfig.py in MoinMoin 1.6.1 uses the cracklib and python-crack features even though they are not thread-safe, which allows remote attackers to cause a den…
|
NVD-CWE-noinfo
|
CVE-2008-6549
|
2009-03-30 13:00 |
2009-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271132
|
- |
|
lukas_ruf
|
muttprint
|
muttprint in muttprint 0.72d allows local users to overwrite arbitrary files via a symlink attack on the /tmp/muttprint.log temporary file.
|
CWE-59
Link Following
|
CVE-2008-5368
|
2009-03-26 14:47 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271133
|
- |
|
drupal
|
print
|
Unspecified vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x before 5.x-4.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to send…
|
NVD-CWE-noinfo
|
CVE-2009-1037
|
2009-03-26 13:00 |
2009-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271134
|
- |
|
sun
|
java_system_identity_manager
|
Sun Java System Identity Manager (IdM) 7.0 through 8.0 responds differently to failed use of the end-user question-based login feature depending on whether the user account exists, which allows remot…
|
CWE-200
Information Exposure
|
CVE-2009-1076
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271135
|
- |
|
sun
|
java_system_identity_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager (IdM) 7.0 through 8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, ak…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1081
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271136
|
- |
|
sun
|
java_system_identity_manager
|
Sun Java System Identity Manager (IdM) 7.0 through 8.0 allows remote authenticated users to gain privileges by submitting crafted commands to the Admin Console, as demonstrated by privileges for acco…
|
CWE-20
Improper Input Validation
|
CVE-2009-1082
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271137
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote authenticated users to conduct cross-site scripting (XSS) and related attacks by uploading HTML and …
|
CWE-79
Cross-site Scripting
|
CVE-2009-0481
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271138
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla before 3.2 before 3.2.1, 3.3 before 3.3.2, and other versions before 3.2 allows remote attackers to perform bug updating activities as othe…
|
CWE-352
Origin Validation Error
|
CVE-2009-0482
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271139
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.22 before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete keywords and user preference…
|
CWE-352
Origin Validation Error
|
CVE-2009-0483
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271140
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag t…
|
CWE-352
Origin Validation Error
|
CVE-2009-0484
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|