|
268851
|
- |
|
sun
|
java_system_identity_manager
|
Sun Java System Identity Manager (IdM) 7.0 through 8.0 responds differently to failed use of the end-user question-based login feature depending on whether the user account exists, which allows remot…
|
CWE-200
Information Exposure
|
CVE-2009-1076
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268852
|
- |
|
sun
|
java_system_identity_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager (IdM) 7.0 through 8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, ak…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1081
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268853
|
- |
|
sun
|
java_system_identity_manager
|
Sun Java System Identity Manager (IdM) 7.0 through 8.0 allows remote authenticated users to gain privileges by submitting crafted commands to the Admin Console, as demonstrated by privileges for acco…
|
CWE-20
Improper Input Validation
|
CVE-2009-1082
|
2009-03-26 00:30 |
2009-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268854
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote authenticated users to conduct cross-site scripting (XSS) and related attacks by uploading HTML and …
|
CWE-79
Cross-site Scripting
|
CVE-2009-0481
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268855
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla before 3.2 before 3.2.1, 3.3 before 3.3.2, and other versions before 3.2 allows remote attackers to perform bug updating activities as othe…
|
CWE-352
Origin Validation Error
|
CVE-2009-0482
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268856
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.22 before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete keywords and user preference…
|
CWE-352
Origin Validation Error
|
CVE-2009-0483
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268857
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag t…
|
CWE-352
Origin Validation Error
|
CVE-2009-0484
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268858
|
- |
|
mozilla
|
bugzilla
|
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or …
|
CWE-352
Origin Validation Error
|
CVE-2009-0485
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268859
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 3.2.1, 3.0.7, and 3.3.2, when running under mod_perl, calls the srand function at startup time, which causes Apache children to have the same seed and produce insufficiently random numbers f…
|
CWE-352
Origin Validation Error
|
CVE-2009-0486
|
2009-03-25 14:50 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268860
|
- |
|
zipgenius
|
zipgenius
|
Multiple stack-based buffer overflows in ZipGenius 5.5.1.468 and 6.0.2.1041, and other versions before 6.0.2.1050, allow remote attackers to execute arbitrary code via (1) a ZIP archive that contains…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3317
|
2009-03-25 13:00 |
2005-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
