266511
|
- |
|
dacian_strain
|
com_jfaq
|
Cross-site scripting (XSS) vulnerability in the JFaq (com_jfaq) component 1.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the question parameter in an add2 action t…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2514
|
2010-06-29 13:00 |
2010-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266512
|
- |
|
dacian_strain
|
com_jfaq
|
Multiple SQL injection vulnerabilities in index.php in the JFaq (com_jfaq) component 1.2 for Joomla!, when magic_quotes_gpc is disabled, allow (1) remote attackers to execute arbitrary SQL commands v…
|
CWE-89
SQL Injection
|
CVE-2010-2515
|
2010-06-29 13:00 |
2010-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266513
|
- |
|
apc
|
network_management_card switched_rack_pdu
|
Multiple cross-site request forgery (CSRF) vulnerabilities on the Network Management Card (NMC) on American Power Conversion (APC) Switched Rack PDU (aka Rack Mount Power Distribution) devices and ot…
|
CWE-352
Origin Validation Error
|
CVE-2009-1797
|
2010-06-29 13:00 |
2009-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266514
|
- |
|
apc
|
network_management_card switched_rack_pdu
|
Multiple cross-site scripting (XSS) vulnerabilities on the Network Management Card (NMC) on American Power Conversion (APC) Switched Rack PDU (aka Rack Mount Power Distribution) devices and other dev…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1798
|
2010-06-29 13:00 |
2009-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266515
|
- |
|
ibm
|
db2
|
The Client Interfaces component in IBM DB2 8.2 before FP18, 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not validate an unspecified pointer, which allows attackers to overwrite "external …
|
CWE-20
Improper Input Validation
|
CVE-2009-4325
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266516
|
- |
|
ibm
|
db2
|
The RAND scalar function in the Common Code Infrastructure component in IBM DB2 9.5 before FP5 and 9.7 before FP1, when the Database Partitioning Feature (DPF) is used, produces "repeating" return va…
|
CWE-200
Information Exposure
|
CVE-2009-4326
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266517
|
- |
|
ibm
|
db2
|
The Common Code Infrastructure component in IBM DB2 9.5 before FP5 and 9.7 before FP1 does not properly validate the size of a memory pool during a creation attempt, which allows attackers to cause a…
|
CWE-20
Improper Input Validation
|
CVE-2009-4327
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266518
|
- |
|
ibm
|
db2
|
Unspecified vulnerability in the DRDA Services component in IBM DB2 9.5 before FP5 allows remote authenticated users to cause a denial of service (server trap) by calling a SQL stored procedure in un…
|
NVD-CWE-noinfo
|
CVE-2009-4328
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266519
|
- |
|
ibm
|
db2
|
Unspecified vulnerability in db2licm in the Engine Utilities component in IBM DB2 9.5 before FP5 has unknown impact and local attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-4330
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266520
|
- |
|
ibm
|
db2
|
db2pd in the Problem Determination component in IBM DB2 9.1 before FP7 and 9.5 before FP5 allows attackers to cause a denial of service (NULL pointer dereference and application termination) via unsp…
|
NVD-CWE-Other
|
CVE-2009-4332
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|