|
268021
|
- |
|
aterm
eterm
mrxvt
multi-aterm
rxvt
rxvt-unicode
wterm
|
aterm
eterm
mrxvt
multi-aterm
rxvt
rxvt-unicode
wterm
|
rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1142
|
2009-02-26 14:00 |
2008-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268022
|
- |
|
rakhisoftware
|
rakhisoftware_shopping_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote attackers to inject arbitrary web script or HTML via the (…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6278
|
2009-02-26 14:00 |
2009-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268023
|
- |
|
rakhisoftware
|
rakhisoftware_shopping_cart
|
RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error mess…
|
CWE-200
Information Exposure
|
CVE-2008-6279
|
2009-02-26 14:00 |
2009-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268024
|
- |
|
tor
|
tor
|
Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attackers, with control of an entry router and an exit router, to confirm that a sender and receiver are communicating via vectors invol…
|
NVD-CWE-Other
|
CVE-2009-0654
|
2009-02-25 14:00 |
2009-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268025
|
- |
|
standards_based_linux_instrumentation
|
sblim-sfcb
|
The SSL certificate setup program (genSslCert.sh) in Standards Based Linux Instrumentation for Manageability (SBLIM) sblim-sfcb 1.3.2 allows local users to overwrite arbitrary files via a symlink att…
|
CWE-59
Link Following
|
CVE-2009-0416
|
2009-02-20 15:47 |
2009-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268026
|
- |
|
xine
|
xine-lib
|
Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to the lack of details, it is not clear whether this is an issue in xine-lib o…
|
NVD-CWE-noinfo
|
CVE-2008-5244
|
2009-02-20 15:45 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268027
|
- |
|
sourceforge
|
wow_raid_manager
|
Cross-site scripting (XSS) vulnerability in WOW Raid Manager (WRM) before 3.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6161
|
2009-02-19 14:00 |
2009-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268028
|
- |
|
hitachi
|
jp1_integrated_management_service_support
|
Cross-site scripting (XSS) vulnerability in Hitachi JP1/Integrated Management - Service Support 08-10 through 08-10-05, 08-11 through 08-11-03, and 08-50 through 08-50-03 on Windows allows remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5717
|
2009-02-18 15:25 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268029
|
- |
|
hitachi
|
jp1_integrated_management_service_support
|
Fixed in the following versions:
Product name: JP1/Integrated Management - Service Support
Version(s):
Windows
08-10-06 December 10, 2008
08-11-04 December 10, 2008
08-50-04 D…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5717
|
2009-02-18 15:25 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268030
|
- |
|
hitachi
|
groupmax_web_workflow_sdk_set_for_active_server_pages
groupmax_workflow_to_development_kit_for_active_server_pages
|
Cross-site scripting (XSS) vulnerability in Hitachi Groupmax Web Workflow SDK Set for Active Server Pages before 06-52-/C and Hitachi Groupmax Workflow - Development Kit for Active Server Pages befor…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5719
|
2009-02-18 15:25 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
