|
266361
|
- |
|
datachecknh
|
sitepal
|
Multiple cross-site scripting (XSS) vulnerabilities in DataCheck Solutions SitePal 1.x allow remote attackers to inject arbitrary web script or HTML via the page parameter to (1) z_admin_login.asp, (…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2615
|
2009-07-28 03:30 |
2009-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266362
|
- |
|
datachecknh
|
sitepal
|
SQL injection vulnerability in z_admin_login.asp in DataCheck Solutions SitePal 1.x allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: the provenance of this in…
|
CWE-89
SQL Injection
|
CVE-2009-2616
|
2009-07-28 03:30 |
2009-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266363
|
- |
|
baofeng
|
storm
|
Stack-based buffer overflow in medialib.dll in BaoFeng Storm 3.9.62 allows remote attackers to execute arbitrary code via a long pathname in the source attribute of an item element in a .smpl playlis…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2617
|
2009-07-28 03:30 |
2009-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266364
|
- |
|
datachecknh
|
v-spacepal
|
SQL injection vulnerability in login.asp in DataCheck Solutions V-SpacePal allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: the provenance of this information…
|
CWE-89
SQL Injection
|
CVE-2009-2619
|
2009-07-28 03:30 |
2009-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266365
|
- |
|
sun
|
opensolaris
solaris
|
Unspecified vulnerability in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of ser…
|
NVD-CWE-noinfo
|
CVE-2009-2596
|
2009-07-27 23:30 |
2009-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266366
|
- |
|
sun
|
java_system_access_manager_policy_agent
|
The Sun Java System (SJS) Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a denial of service (daemon crash) via a GET request.
|
NVD-CWE-noinfo
|
CVE-2009-2597
|
2009-07-27 23:30 |
2009-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266367
|
- |
|
rim
|
blackberry_8800
|
The Research In Motion (RIM) BlackBerry 8800 allows remote attackers to cause a denial of service (memory consumption and browser crash) via a large integer value for the length property of a Select …
|
CWE-399
Resource Management Errors
|
CVE-2009-2575
|
2009-07-23 13:00 |
2009-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266368
|
- |
|
mysql_quick_admin
|
mysql_quick_admin
|
Directory traversal vulnerability in EKINdesigns MySQL Quick Admin 1.5.5 allows remote attackers to read and execute arbitrary files via a .. (dot dot) in the lang parameter to actions.php. NOTE: th…
|
CWE-22
Path Traversal
|
CVE-2008-4454
|
2009-07-23 13:00 |
2008-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266369
|
- |
|
goahead
|
goahead_webserver
|
The security handler in GoAhead WebServer before 2.1.1 allows remote attackers to bypass authentication and obtain access to protected web content via "an extra slash in a URL," a different vulnerabi…
|
CWE-287
Improper Authentication
|
CVE-2002-2427
|
2009-07-23 13:00 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266370
|
- |
|
goahead
|
goahead_webserver
|
webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length heade…
|
CWE-20
Improper Input Validation
|
CVE-2002-2428
|
2009-07-23 13:00 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
