|
257751
|
- |
|
electrasoft
|
32bit_ftp
|
Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long banner. NOTE: this might overlap CVE-2003-1368.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1592
|
2017-09-29 10:34 |
2009-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257752
|
- |
|
pablosoftwaresolutions
|
quick\'n_easy_mail_server
|
Pablo Software Solutions Quick 'n Easy Mail Server 3.3 allows remote attackers to cause a denial of service (daemon outage or CPU consumption) via multiple long SMTP commands, as demonstrated by HELO…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1602
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257753
|
- |
|
linkbase
|
linkbase
|
Cross-site scripting (XSS) vulnerability in the administrator panel in phpForm.net LinkBase 2.0 allows remote attackers to inject arbitrary web script or HTML via the username in a registration, whic…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1607
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257754
|
- |
|
battleblog
|
battle_blog
|
Unrestricted file upload vulnerability in admin/uploadform.asp in Battle Blog 1.25 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing i…
|
CWE-20
Improper Input Validation
|
CVE-2009-1609
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257755
|
- |
|
jobscript
|
job_script_job_board_software
|
admin/changepassword.php in Job Script Job Board Software 2.0 allows remote attackers to change the administrator password and gain administrator privileges via a direct request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-1610
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257756
|
- |
|
electrasoft
|
32bit_ftp
|
Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long 257 reply to a CWD command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1611
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257757
|
- |
|
baofeng
|
storm
|
Stack-based buffer overflow in the MPS.StormPlayer.1 ActiveX control in mps.dll 3.9.4.27 in Baofeng Storm allows remote attackers to execute arbitrary code via a long argument to the OnBeforeVideoDow…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1612
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257758
|
- |
|
gowondesigns
|
leap
|
Multiple SQL injection vulnerabilities in leap.php in Leap CMS 0.1.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) searchterm or (2) email p…
|
CWE-89
SQL Injection
|
CVE-2009-1613
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257759
|
- |
|
gowondesigns
|
leap
|
Multiple cross-site scripting (XSS) vulnerabilities in Leap CMS 0.1.4 allow remote attackers to inject arbitrary web script or HTML via (1) the msg parameter (aka the message in an article comment) o…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1614
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257760
|
- |
|
gowondesigns
|
leap
|
Unrestricted file upload vulnerability in Leap CMS 0.1.4 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via an admin.system.files (aka Manage Files…
|
NVD-CWE-Other
|
CVE-2009-1615
|
2017-09-29 10:34 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
