|
260281
|
- |
|
greendesktiny
|
green_desktiny
|
SQL injection vulnerability in news_detail.php in Green Desktiny 2.3.1, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2009-4456
|
2013-08-28 15:14 |
2009-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260282
|
- |
|
backup_manager
|
backup_manager
|
backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtai…
|
CWE-255
CWE-310
CWE-200
Credentials Management
Cryptographic Issues
Information Exposure
|
CVE-2007-4656
|
2013-08-28 14:37 |
2007-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260283
|
- |
|
netbsd
|
netbsd
|
Heap-based buffer overflow in the kernel in NetBSD 3.0, certain versions of FreeBSD and OpenBSD, and possibly other BSD derived operating systems allows local users to have an unknown impact. NOTE: …
|
NVD-CWE-Other
|
CVE-2007-1523
|
2013-08-28 14:28 |
2007-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260284
|
- |
|
bestpractical
|
rt
|
Request Tracker (RT) 4.x before 4.0.13 does not properly enforce the DeleteTicket and "custom lifecycle transition" permission, which allows remote authenticated users with the ModifyTicket permissio…
|
CWE-255
Credentials Management
|
CVE-2012-4733
|
2013-08-28 02:16 |
2013-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260285
|
- |
|
incredimail
|
incredimail
|
Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2.0 allows remote attackers to cause a denial of service (application crash) or …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5289
|
2013-08-27 23:17 |
2013-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260286
|
- |
|
myrephp
|
myre_realty_manager
|
Multiple SQL injection vulnerabilities in MYRE Realty Manager allow remote attackers to execute arbitrary SQL commands via the bathrooms1 parameter to (1) demo2/search.php or (2) search.php.
|
CWE-89
SQL Injection
|
CVE-2012-6584
|
2013-08-27 23:13 |
2013-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260287
|
- |
|
myrephp
|
myre_vacation_rental
|
Multiple SQL injection vulnerabilities in MYRE Vacation Rental Software allow remote attackers to execute arbitrary SQL commands via the (1) garage1 or (2) bathrooms1 parameter to vacation/1_mobile/s…
|
CWE-89
SQL Injection
|
CVE-2012-6586
|
2013-08-27 23:01 |
2013-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260288
|
- |
|
myrephp
|
myre_vacation_rental
|
Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote attackers to inject arbitrary web script or HTML via the link_idd parame…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6587
|
2013-08-27 22:46 |
2013-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260289
|
- |
|
myrephp
|
myre_business_directory
|
SQL injection vulnerability in links.php in MYRE Business Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter.
|
CWE-89
SQL Injection
|
CVE-2012-6588
|
2013-08-27 22:27 |
2013-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260290
|
- |
|
cisco
|
prime_central_for_hosted_collaboration_solution_assurance
|
Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.x before 9.2(1) allows remote attackers to cause a denial of service (disk consumption) via a flood of TCP packets to p…
|
CWE-399
Resource Management Errors
|
CVE-2013-3387
|
2013-08-27 22:26 |
2013-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
