|
266611
|
- |
|
tangocms
|
tangocms
|
Cross-site scripting (XSS) vulnerability in the hook_cntrlr_error_output function in modules/page/hooks/listeners.php in the admincp component in TangoCMS 2.2.x (aka Eagle) before 2.2.4 allows remote…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0862
|
2009-03-21 14:55 |
2009-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266612
|
- |
|
wesnoth
|
wesnoth
|
The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document.
|
CWE-399
Resource Management Errors
|
CVE-2009-0366
|
2009-03-21 14:54 |
2009-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266613
|
- |
|
hp
|
wmi_mapper
|
Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows local users to gain privileges via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-0712
|
2009-03-21 14:54 |
2009-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266614
|
- |
|
hp
|
systems_insight_manager
|
Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-0713
|
2009-03-21 14:54 |
2009-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266615
|
- |
|
redhat
|
jboss_enterprise_application_platform
|
The request handler in JBossWS in JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP06 and 4.3 before 4.3.0.CP04 does not properly validate the resource path during a …
|
CWE-20
Improper Input Validation
|
CVE-2009-0027
|
2009-03-21 14:53 |
2009-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266616
|
- |
|
pdfjam
|
pdfjam
|
Multiple untrusted search path vulnerabilities in pdfjam allow local users to gain privileges via a Trojan horse program in (1) the current working directory or (2) /var/tmp, related to the (a) pdf90…
|
NVD-CWE-Other
|
CVE-2008-5843
|
2009-03-20 14:52 |
2009-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266617
|
- |
|
mplayer
|
mplayer
|
MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated…
|
CWE-399
Resource Management Errors
|
CVE-2008-4610
|
2009-03-20 14:49 |
2008-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266618
|
- |
|
gnome
|
epiphany
|
Untrusted search path vulnerability in the Python interface in Epiphany 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current…
|
NVD-CWE-Other
|
CVE-2008-5985
|
2009-03-19 14:48 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266619
|
- |
|
debian
|
horde
horde_groupware
|
Cross-site scripting (XSS) vulnerability in the tag cloud search script (horde/services/portal/cloud_search.php) in Horde before 3.2.4 and 3.3.3, and Horde Groupware before 1.1.5, allows remote attac…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0931
|
2009-03-19 01:23 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266620
|
- |
|
miranda-im
|
miranda_im
|
Stack-based buffer overflow in Miranda IM 0.6.8 allows remote attackers to execute arbitrary code via a crafted Yahoo! Messenger packet. NOTE: this might overlap CVE-2007-5590.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5542
|
2009-03-18 19:30 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
