266441
|
- |
|
aom-software
|
beex
|
Multiple cross-site scripting (XSS) vulnerabilities in AOM Software Beex 3 allow remote attackers to inject arbitrary web script or HTML via the navaction parameter to (1) news.php and (2) partnerall…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3057
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266442
|
- |
|
allpublication
|
jboard
|
Multiple SQL injection vulnerabilities in Joker Board (aka JBoard) 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via (1) core/select.php or (2) the city parameter to top_ad…
|
CWE-89
SQL Injection
|
CVE-2009-3059
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266443
|
- |
|
alqa6ari
|
script_q_r
|
SQL injection vulnerability in lesson.php in Alqatari Q R Script 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from thi…
|
CWE-89
SQL Injection
|
CVE-2009-3061
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266444
|
- |
|
webformatique
|
reservation_manager
|
Cross-site scripting (XSS) vulnerability in index.php in Reservation Manager allows remote attackers to inject arbitrary web script or HTML via the resman_startdate parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3067
|
2009-09-4 13:00 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266445
|
- |
|
ibm
|
lotus_notes
|
Unspecified vulnerability in nlnotes.dll in the client in IBM Lotus Notes 6.5, 7.0.x before 7.0.2 CCH, and 8.0.x before 8.0.1 allows remote attackers to execute arbitrary code via a crafted attachmen…
|
CWE-94
Code Injection
|
CVE-2008-1217
|
2009-09-3 13:00 |
2008-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266446
|
- |
|
intralearn
|
intralearn
|
Multiple cross-site scripting (XSS) vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2008-7147
|
2009-09-3 13:00 |
2009-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266447
|
- |
|
synfig
|
synfigstudio
|
Unspecified vulnerability in Synfig Animation Studio before 0.61.08 allows attackers to execute arbitrary code via a crafted .sif file.
|
NVD-CWE-noinfo
|
CVE-2008-7148
|
2009-09-3 13:00 |
2009-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266448
|
- |
|
bcoos
|
bcoos
|
SQL injection vulnerability in modules/adresses/ratefile.php in bcoos 1.0.10 and earlier allows remote attackers to execute arbitrary SQL commands via the lid parameter, a different vector than CVE-2…
|
CWE-89
SQL Injection
|
CVE-2007-6275
|
2009-09-3 13:00 |
2007-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266449
|
- |
|
james_ashton
|
compface
|
Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a .xbm file. NOTE: this issue only affects compface on dis…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2286
|
2009-09-2 14:24 |
2009-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266450
|
- |
|
freenas
|
freenas
|
Cross-site scripting (XSS) vulnerability in FreeNAS before 0.69.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2739
|
2009-09-2 14:24 |
2009-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|