270781
|
- |
|
punbb
|
punbb
|
Cross-site scripting (XSS) vulnerability in PunBB 1.2.16 and earlier allows remote attackers to inject arbitrary web script or HTML via the get_host parameter to moderate.php.
|
CWE-79
Cross-site Scripting
|
CVE-2008-1485
|
2009-09-1 14:14 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270782
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre does not properly block data: URIs in Location headers in HTTP responses, which allows remote attackers to conduct cross-site scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3012
|
2009-09-1 13:00 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270783
|
- |
|
sun
|
opensolaris solaris
|
The sockfs module in the kernel in Sun Solaris 10 and OpenSolaris snv_41 through snv_122, when Network Cache Accelerator (NCA) logging is enabled, allows remote attackers to cause a denial of service…
|
CWE-399
Resource Management Errors
|
CVE-2009-3000
|
2009-08-31 13:00 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270784
|
- |
|
avant_force
|
avant_browser
|
Avant Browser 11.7 Builds 35 and 36 allows remote attackers to spoof the address bar, via window.open with a relative URI, to show an arbitrary URL on the web site visited by the victim, as demonstra…
|
NVD-CWE-Other
|
CVE-2009-3004
|
2009-08-31 13:00 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270785
|
- |
|
mrcgiguy
|
hot_links_sql-php
|
SQL injection vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and earlier allows remote attackers to execute arbitrary SQL commands via the news.php parameter.
|
CWE-89
SQL Injection
|
CVE-2008-7120
|
2009-08-29 00:30 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270786
|
- |
|
mrcgiguy
|
hot_links_sql-php
|
Cross-site scripting (XSS) vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the search bar.
|
CWE-79
Cross-site Scripting
|
CVE-2008-7121
|
2009-08-29 00:30 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270787
|
- |
|
cisco
|
aironet_ap1100 aironet_ap1200
|
The Over-the-Air Provisioning (OTAP) functionality on Cisco Aironet Lightweight Access Point 1100 and 1200 devices does not properly implement access-point association, which allows remote attackers …
|
NVD-CWE-Other
|
CVE-2009-2861
|
2009-08-28 13:00 |
2009-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270788
|
- |
|
google
|
chrome
|
Google Chrome 1.0.154.65, 1.0.154.48, and earlier allows remote attackers to (1) cause a denial of service (application hang) via vectors involving a chromehtml: URI value for the document.location p…
|
NVD-CWE-Other
|
CVE-2009-2974
|
2009-08-28 13:00 |
2009-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270789
|
- |
|
cisco
|
aironet_ap1100 aironet_ap1200
|
Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses an…
|
CWE-310
Cryptographic Issues
|
CVE-2009-2976
|
2009-08-28 13:00 |
2009-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270790
|
- |
|
sun
|
java_plug-in
|
The Java Plug-in 1.4.2_03 and 1.4.2_04 controls, and the 1.4.2_03 and 1.4.2_04 <applet> redirector controls, allow remote attackers to cause a denial of service (Internet Explorer crash) by creating …
|
CWE-16
Configuration
|
CVE-2005-4845
|
2009-08-28 13:00 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|