268241
|
- |
|
quickersite
|
quickersite
|
mailPage.asp in QuickerSite 1.8.5 allows remote attackers to flood e-mail accounts with messages via a large number of requests with a modified sEmail parameter.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6674
|
2009-04-23 14:57 |
2009-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268242
|
- |
|
quickersite
|
quickersite
|
Unrestricted file upload vulnerability in fckeditor251/editor/filemanager/connectors/asp/upload.asp in QuickerSite 1.8.5 allows remote attackers to execute arbitrary code by uploading a file with an …
|
CWE-94
Code Injection
|
CVE-2008-6677
|
2009-04-23 14:57 |
2009-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268243
|
- |
|
gscripts
|
dns_tools
|
dig.php in GScripts.net DNS Tools allows remote attackers to execute arbitrary commands via shell metacharacters in the host parameter. NOTE: the provenance of this information is unknown; the detail…
|
CWE-20
Improper Input Validation
|
CVE-2009-1361
|
2009-04-23 13:00 |
2009-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268244
|
- |
|
mark_girling
|
myshoutpro
|
Cross-site scripting (XSS) vulnerability in MyShoutPro before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2006-7238
|
2009-04-22 13:00 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268245
|
- |
|
drupal
|
print
|
Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.5 and 6.x before 6.x-1.5, a module for Drupal, allows remote attackers to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1343
|
2009-04-21 13:00 |
2009-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268246
|
- |
|
drupal
|
cck_comment_reference
|
Cross-site scripting (XSS) vulnerability in the CCK comment reference module 6.x before 6.x-1.2, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via certain commen…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1342
|
2009-04-20 23:30 |
2009-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268247
|
- |
|
drupal
|
localization_client
|
Cross-site scripting (XSS) vulnerability in the Localization client module 5.x before 5.x-1.2 and 6.x before 6.x-1.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1344
|
2009-04-20 23:30 |
2009-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268248
|
- |
|
tor
|
tor
|
Unspecified vulnerability in Tor before 0.2.0.34 allows attackers to cause a denial of service (infinite loop) via "corrupt votes."
|
NVD-CWE-noinfo
|
CVE-2009-0936
|
2009-04-18 14:47 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268249
|
- |
|
tor
|
tor
|
Unspecified vulnerability in Tor before 0.2.0.34 allows directory mirrors to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-0937
|
2009-04-18 14:47 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268250
|
- |
|
tor
|
tor
|
Tor before 0.2.0.34 treats incomplete IPv4 addresses as valid, which has unknown impact and attack vectors related to "Spec conformance," as demonstrated using 192.168.0.
|
NVD-CWE-noinfo
|
CVE-2009-0939
|
2009-04-18 14:47 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|