267891
|
- |
|
multi-website
|
multi_website
|
Cross-site scripting (XSS) vulnerability in Multi Website 1.5 allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to the default URI.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3162
|
2009-09-11 13:00 |
2009-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267892
|
- |
|
openwebmail.acatysmoof
|
openwebmail
|
Multiple cross-site scripting (XSS) vulnerabilities in OpenWebMail before 2.53 (Stable) allow remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-7202
|
2009-09-11 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267893
|
- |
|
allenthusiast
|
reviewpost_php_pro
|
Cross-site scripting (XSS) vulnerability in showproduct.php in ReviewPost Pro vB3 allows remote attackers to inject arbitrary web script or HTML via the date parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3147
|
2009-09-11 03:30 |
2009-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267894
|
- |
|
mark_reinsfelder
|
metashell
|
Unspecified vulnerability in metashell before 0.03 has unknown impact and attack vectors related to a "PATH execution security flaw," possibly an untrusted search path vulnerability.
|
NVD-CWE-noinfo
|
CVE-2008-7196
|
2009-09-10 19:30 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267895
|
- |
|
g15tools
|
g15daemon
|
Multiple unspecified vulnerabilities in G15Daemon before 1.9.4 have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2008-7197
|
2009-09-10 19:30 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267896
|
- |
|
alecwh
|
phpns
|
Multiple unspecified vulnerabilities in phpns before 2.1.1beta1 have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2008-7198
|
2009-09-10 19:30 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267897
|
- |
|
phoenixcontact
|
fl_il_24_bk-pac
|
Phoenix Contact FL IL 24 BK-PAC allows remote attackers to cause a denial of service (hang) via (1) unspecified manipulations as demonstrated by a Nessus scan or (2) malformed input to TCP port 502.
|
NVD-CWE-noinfo
|
CVE-2008-7199
|
2009-09-10 19:30 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267898
|
- |
|
deliantra
|
deliantra
|
Double free vulnerability in Deliantra server engine before 2.4 has unknown impact and attack vectors.
|
NVD-CWE-Other
|
CVE-2008-7200
|
2009-09-10 19:30 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267899
|
- |
|
oxid
|
eshop
|
OXID eShop 4.x before 4.1.4-21266, 3.x, and 2.x allows remote attackers to obtain sensitive information (session details and order history of other users) via a crafted cookie.
|
CWE-200
Information Exposure
|
CVE-2009-2266
|
2009-09-10 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267900
|
- |
|
htmldoc
|
htmldoc
|
Buffer overflow in the set_page_size function in util.cxx in HTMLDOC 1.8.27 and earlier allows context-dependent attackers to execute arbitrary code via a long MEDIA SIZE comment. NOTE: it was later…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3050
|
2009-09-10 13:00 |
2009-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|