267711
|
- |
|
openoffice
|
openoffice
|
OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick…
|
NVD-CWE-Other
|
CVE-2005-4636
|
2009-11-12 14:51 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267712
|
- |
|
rim ibm
|
blackberry_desktop_software lotus_notes_intellisync
|
Buffer overflow in the IBM Lotus Notes Intellisync ActiveX control in lnresobject.dll in BlackBerry Desktop Manager in Research In Motion (RIM) BlackBerry Desktop Software before 5.0.1 allows remote …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0306
|
2009-11-12 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267713
|
- |
|
ezra_barnett_gildesgame
|
smartqueue_og
|
The Smartqueue_og module 5.x before 5.x-1.3 and 6.x before 6.x-1.0-rc3, a module for Drupal, does not verify group-node privileges in certain circumstances involving subqueue creation, which allows r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3921
|
2009-11-10 14:00 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267714
|
- |
|
tftgallery
|
tftgallery
|
Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F (encoded dot dot slash) in the album parameter.
|
CWE-22
Path Traversal
|
CVE-2009-3912
|
2009-11-10 02:30 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267715
|
- |
|
arubanetworks
|
arubaos aruba_mobility_controller
|
ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service (Access Point crash) via a malformed 802.11 Associati…
|
NVD-CWE-noinfo
|
CVE-2009-3836
|
2009-11-9 14:00 |
2009-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267716
|
- |
|
ecouriersoftware
|
e-courirer_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to home/index.asp and other unspecified v…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3901
|
2009-11-7 00:30 |
2009-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267717
|
- |
|
novell
|
edirectory
|
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a d…
|
CWE-287
Improper Authentication
|
CVE-2009-3862
|
2009-11-5 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267718
|
- |
|
novell
|
edirectory
|
Per: http://www.novell.com/support/viewContent.do?externalId=7004721
"Resolution
This vulnerability is resolved in eDirectory 8.8.5 ftf1 and eDirectory 8.7.3.10 ftf2.
To resolve this problem…
|
CWE-287
Improper Authentication
|
CVE-2009-3862
|
2009-11-5 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267719
|
- |
|
mahara
|
mahara
|
Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote authenticated institution administrators to reset a site administrator password via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3298
|
2009-11-4 14:00 |
2009-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267720
|
- |
|
tftgallery
|
tftgallery
|
Cross-site scripting (XSS) vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3833
|
2009-11-3 00:30 |
2009-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|