|
268111
|
- |
|
zabbix
|
zabbix
|
The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix Server before 1.6.8 allows remote attackers to cause a denial of service (crash) via a request that lacks expected separators, which …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4501
|
2010-01-1 14:00 |
2010-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268112
|
- |
|
zabbix
|
zabbix
|
The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary command…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4502
|
2010-01-1 14:00 |
2010-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268113
|
- |
|
tatsuhiro_tsujikawa
|
aria2
|
Buffer overflow in DHTRoutingTableDeserializer.cc in aria2 0.15.3, 1.2.0, and other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unkno…
|
NVD-CWE-noinfo
|
CVE-2009-3575
|
2009-12-31 16:04 |
2009-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268114
|
- |
|
dag.wieers
|
dstat
|
Untrusted search path vulnerability in dstat before r3199 allows local users to gain privileges via a Trojan horse Python module in the current working directory, a different vulnerability than CVE-2…
|
NVD-CWE-Other
|
CVE-2009-4081
|
2009-12-31 16:04 |
2009-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268115
|
- |
|
azeotech
|
daqfactory
|
Buffer overflow in the web service in AzeoTech DAQFactory 5.77 might allow remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Pr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4480
|
2009-12-31 14:00 |
2009-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268116
|
- |
|
mailsite
|
mailsite
|
Unspecified vulnerability in LDAP3A.exe in MailSite 8.0.4 allows remote attackers to cause a denial of service (daemon crash) via unknown vectors, as demonstrated by a certain module in VulnDisco Pac…
|
NVD-CWE-noinfo
|
CVE-2009-4483
|
2009-12-31 14:00 |
2009-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268117
|
- |
|
flatpress
|
flatpress
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.909 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) contact.php, (2) login.php, and (3) searc…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4461
|
2009-12-31 05:00 |
2009-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268118
|
- |
|
php.html
|
kandalf_upper
|
Unrestricted file upload vulnerability in upper.php in kandalf upper 0.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a di…
|
NVD-CWE-Other
|
CVE-2009-4451
|
2009-12-30 14:00 |
2009-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268119
|
- |
|
virtuemart
|
virtuemart
|
SQL injection vulnerability in index.php in VirtueMart 1.0 allows remote attackers to execute arbitrary SQL commands via the product_id parameter in a shop.product_details shop.flypage action.
|
CWE-89
SQL Injection
|
CVE-2009-4430
|
2009-12-29 14:00 |
2009-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268120
|
- |
|
codemight
|
videocms
|
SQL injection vulnerability in index.php in CodeMight VideoCMS 3.1 allows remote attackers to execute arbitrary SQL commands via the v parameter in a video action.
|
CWE-89
SQL Injection
|
CVE-2009-4432
|
2009-12-29 14:00 |
2009-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
