|
267541
|
- |
|
greensql
|
greensql_firewall
|
GreenSQL Firewall (greensql-fw) before 0.9.2 allows remote attackers to bypass SQL injection protection via a crafted string, possibly involving an encoded space character (%20).
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7229
|
2009-09-14 23:30 |
2009-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267542
|
- |
|
hitachi
|
jp1_file_transmission_server
|
Multiple unspecified vulnerabilities in Hitachi JP1/File Transmission Server/FTP before 09-00 allow remote attackers to execute arbitrary code via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-3169
|
2009-09-14 13:00 |
2009-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267543
|
- |
|
kaspersky
|
kaspersky_anti-virus_scanner
kaspersky_online_scanner
|
Unspecified vulnerability in Kaspersky Online Scanner 7.0 has unknown impact and attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, (1) "Kaspersky Online Antiviru…
|
NVD-CWE-noinfo
|
CVE-2009-3177
|
2009-09-14 13:00 |
2009-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267544
|
- |
|
symantec
|
altiris_deployment_solution
|
Unspecified vulnerability in mm.exe in Symantec Altiris Deployment Solution 6.9 allows remote attackers to cause a denial of service via unknown attack vectors, as demonstrated by a certain module in…
|
NVD-CWE-noinfo
|
CVE-2009-3178
|
2009-09-14 13:00 |
2009-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267545
|
- |
|
claudio_matsuoka
|
extended_module_player
|
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm func…
|
CWE-94
Code Injection
|
CVE-2007-6731
|
2009-09-14 13:00 |
2009-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267546
|
- |
|
claudio_matsuoka
|
extended_module_player
|
Multiple buffer overflows in the dtt_load function in loaders/dtt_load.c Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via unspecified vectors relate…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6732
|
2009-09-14 13:00 |
2009-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267547
|
- |
|
rivetcode
|
rivettracker
|
RivetTracker before 1.0 stores passwords in cleartext in config.php, which allows local users to discover passwords by reading config.php.
|
CWE-310
Cryptographic Issues
|
CVE-2008-7207
|
2009-09-12 01:30 |
2009-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267548
|
- |
|
marc_gloor
|
screenie
|
screenie in screenie 1.30.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.screenie.##### temporary file.
|
CWE-59
Link Following
|
CVE-2008-5371
|
2009-09-11 14:29 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267549
|
- |
|
cmus
|
cmus
|
cmus-status-display in cmus 2.2.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/cmus-status temporary file.
|
CWE-59
Link Following
|
CVE-2008-5375
|
2009-09-11 14:29 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267550
|
- |
|
multi-website
|
multi_website
|
Cross-site scripting (XSS) vulnerability in Multi Website 1.5 allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to the default URI.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3162
|
2009-09-11 13:00 |
2009-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
