266681
|
- |
|
keil-software
|
photokorn_gallery
|
Multiple cross-site scripting (XSS) vulnerabilities in Photokorn Gallery 1.81 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) where[] parameter to search.php and…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4980
|
2010-08-26 05:00 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266682
|
- |
|
keil-software
|
photokorn_gallery
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Photokorn Gallery 1.81 allow remote attackers to hijack the authentication of administrators.
|
CWE-352
Origin Validation Error
|
CVE-2009-4981
|
2010-08-26 05:00 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266683
|
- |
|
snowhall
|
silurus_system
|
Multiple cross-site scripting (XSS) vulnerabilities in Silurus Classifieds 1.0 allow remote attackers to inject arbitrary web script or HTML via the ID parameter to (1) category.php and (2) wcategory…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4983
|
2010-08-26 05:00 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266684
|
- |
|
ajsquare
|
aj_auction_pro-oopd
|
Cross-site scripting (XSS) vulnerability in index.php in AJ Auction Pro OOPD 3.0 allows remote attackers to inject arbitrary web script or HTML via the txtkeyword parameter in a search action.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4989
|
2010-08-26 05:00 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266685
|
- |
|
jrbcs
|
webform_report
|
Cross-site scripting (XSS) vulnerability in the Webform report module 5.x and 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a submission.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4990
|
2010-08-26 05:00 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266686
|
- |
|
omnistaretools
|
omnistar_recruiting
|
Cross-site scripting (XSS) vulnerability in users/resume_register.php in Omnistar Recruiting allows remote attackers to inject arbitrary web script or HTML via the job2 parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4991
|
2010-08-26 05:00 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266687
|
- |
|
novell
|
iprint
|
Buffer overflow in the ActiveX control in Novell iPrint Client 4.38 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors, as dem…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3176
|
2010-08-25 14:36 |
2009-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266688
|
- |
|
redhat
|
enterprise_virtualization qspice
|
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly validate guest QXL driver pointers, which all…
|
CWE-20
Improper Input Validation
|
CVE-2010-0428
|
2010-08-25 13:00 |
2010-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266689
|
- |
|
redhat
|
enterprise_virtualization qspice
|
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly restrict the addresses upon which memory-mana…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0429
|
2010-08-25 13:00 |
2010-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266690
|
- |
|
redhat
|
enterprise_virtualization kvm
|
QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly validate guest QXL driver pointers, which allows guest OS users…
|
CWE-20
Improper Input Validation
|
CVE-2010-0431
|
2010-08-25 13:00 |
2010-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|