|
267561
|
- |
|
oxid
|
eshop
|
Unspecified vulnerability in OXID eShop Professional, Enterprise, and Community Edition before 4.1.2, 3.x, and 2.x allows remote attackers to gain write access to product reviews via a crafted parame…
|
NVD-CWE-noinfo
|
CVE-2009-3113
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267562
|
- |
|
danneo
|
cms
|
SQL injection vulnerability in mod/poll/comment.php in the vote module in Danneo CMS 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the comtext parameter, in conjunct…
|
CWE-89
SQL Injection
|
CVE-2009-3118
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267563
|
- |
|
x-iweb.ru
|
download_system_msf
|
SQL injection vulnerability in screen.php in the Download System mSF (dsmsf) module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the view_id parameter.
|
CWE-89
SQL Injection
|
CVE-2009-3119
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267564
|
- |
|
bigace
|
bigace
|
Cross-site scripting (XSS) vulnerability in public/index.php in BIGACE Web CMS 2.6 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details ar…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3120
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267565
|
- |
|
ipmotor
|
quarkmail
|
Directory traversal vulnerability in get_message.cgi in QuarkMail allows remote attackers to read arbitrary files via a .. (dot dot) in the tf parameter.
|
CWE-22
Path Traversal
|
CVE-2009-3124
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267566
|
- |
|
bastian_blumentritt
|
local_media_browser
|
Multiple unspecified vulnerabilities in Local Media Browser before 0.1 have unknown impact and attack vectors related to "Security holes."
|
NVD-CWE-noinfo
|
CVE-2008-7189
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267567
|
- |
|
adium
|
adium
|
Unspecified vulnerability in Adium before 1.2 has unknown impact and attack vectors related to javascript: URLs, possibly cross-site scripting (XSS).
|
NVD-CWE-noinfo
|
CVE-2008-7190
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267568
|
- |
|
pps.jussieu
|
polipo
|
Unspecified vulnerability in Polipo before 1.0.4 allows remote attackers to cause a denial of service (crash) via a long request URL.
|
NVD-CWE-noinfo
|
CVE-2008-7191
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267569
|
- |
|
cisco
|
nx-os
nexus_5000
nexus_7000
|
Unspecified vulnerability in Cisco NX-OS before 4.0(1a)N2(1), when running on Nexus 5000 platforms, allows remote attackers to cause a denial of service (crash) via an unspecified "sequence of TCP pa…
|
NVD-CWE-noinfo
|
CVE-2009-0627
|
2009-09-9 13:00 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267570
|
- |
|
zope
|
zodb
|
Unspecified vulnerability in the Zope Enterprise Objects (ZEO) storage-server functionality in Zope Object Database (ZODB) 3.8 before 3.8.3 and 3.9.x before 3.9.0c2, when certain ZEO database sharing…
|
NVD-CWE-noinfo
|
CVE-2009-2701
|
2009-09-9 13:00 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
