271091
|
- |
|
andrew_freed
|
quotebook
|
Multiple SQL injection vulnerabilities in QuoteBook allow remote attackers to execute arbitrary SQL commands via the (1) MyBox and (2) selectFavorites parameters to (a) quotes.php and the (3) QuoteNa…
|
CWE-89
SQL Injection
|
CVE-2009-0829
|
2009-03-21 14:55 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271092
|
- |
|
andrew_freed
|
quotebook
|
Cross-site scripting (XSS) vulnerability in QuoteBook allows remote attackers to inject arbitrary web script or HTML via the (1) QuoteName and (2) QuoteText parameters to quotesadd.php. NOTE: the pr…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0830
|
2009-03-21 14:55 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271093
|
- |
|
tangocms
|
tangocms
|
Cross-site scripting (XSS) vulnerability in the hook_cntrlr_error_output function in modules/page/hooks/listeners.php in the admincp component in TangoCMS 2.2.x (aka Eagle) before 2.2.4 allows remote…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0862
|
2009-03-21 14:55 |
2009-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271094
|
- |
|
wesnoth
|
wesnoth
|
The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document.
|
CWE-399
Resource Management Errors
|
CVE-2009-0366
|
2009-03-21 14:54 |
2009-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271095
|
- |
|
hp
|
wmi_mapper
|
Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows local users to gain privileges via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-0712
|
2009-03-21 14:54 |
2009-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271096
|
- |
|
hp
|
systems_insight_manager
|
Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-0713
|
2009-03-21 14:54 |
2009-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271097
|
- |
|
redhat
|
jboss_enterprise_application_platform
|
The request handler in JBossWS in JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP06 and 4.3 before 4.3.0.CP04 does not properly validate the resource path during a …
|
CWE-20
Improper Input Validation
|
CVE-2009-0027
|
2009-03-21 14:53 |
2009-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271098
|
- |
|
pdfjam
|
pdfjam
|
Multiple untrusted search path vulnerabilities in pdfjam allow local users to gain privileges via a Trojan horse program in (1) the current working directory or (2) /var/tmp, related to the (a) pdf90…
|
NVD-CWE-Other
|
CVE-2008-5843
|
2009-03-20 14:52 |
2009-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271099
|
- |
|
mplayer
|
mplayer
|
MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated…
|
CWE-399
Resource Management Errors
|
CVE-2008-4610
|
2009-03-20 14:49 |
2008-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271100
|
- |
|
gnome
|
epiphany
|
Untrusted search path vulnerability in the Python interface in Epiphany 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current…
|
NVD-CWE-Other
|
CVE-2008-5985
|
2009-03-19 14:48 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|