|
258021
|
- |
|
chcounter
|
chcounter
|
Multiple SQL injection vulnerabilities in stats/index.php in chCounter 3.1.3 allow remote attackers to execute arbitrary SQL commands via (1) the login_name parameter (aka the username field) or (2) …
|
CWE-89
SQL Injection
|
CVE-2009-1347
|
2017-09-29 10:34 |
2009-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258022
|
- |
|
heikki_ylinen
|
apollo
|
Heap-based buffer overflow in Apollo 37zz allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long URI in a playlist (.m3u) file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1351
|
2017-09-29 10:34 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258023
|
- |
|
dawningsoft
|
powerchm
|
Stack-based buffer overflow in Dawningsoft PowerCHM 5.7 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an HTML file with a link to a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1352
|
2017-09-29 10:34 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258024
|
- |
|
ibm
|
aix
|
Stack-based buffer overflow in muxatmd in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long filename.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1355
|
2017-09-29 10:34 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258025
|
- |
|
elecard
|
elecard_avc_hd_player
|
Stack-based buffer overflow in Elecard AVC HD Player allows remote attackers to execute arbitrary code via a long MP3 filename in a playlist (.xpl) file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1356
|
2017-09-29 10:34 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258026
|
- |
|
mozilo
|
mozilocms
|
Cross-site scripting (XSS) vulnerability in index.php in moziloCMS 1.11 allows remote attackers to inject arbitrary web script or HTML via the query parameter in search action, a different issue than…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1367
|
2017-09-29 10:34 |
2009-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258027
|
- |
|
mozilo
|
mozilocms
|
Directory traversal vulnerability in index.php in moziloCMS 1.11 allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter. NOTE: this might be the same issue as CVE-2…
|
CWE-22
Path Traversal
|
CVE-2009-1368
|
2017-09-29 10:34 |
2009-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258028
|
- |
|
mozilo
|
mozilocms
|
moziloCMS 1.11 allows remote attackers to obtain sensitive information via the (1) gal[] parameter to gallery.php, (2) page[] and (3) cat[] parameter to index.php, or (4) file[] parameter to download…
|
CWE-20
Improper Input Validation
|
CVE-2009-1369
|
2017-09-29 10:34 |
2009-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258029
|
- |
|
xilisoft
|
xilisoft_video_converter
|
Stack-based buffer overflow in ape_plugin.plg in Xilisoft Video Converter 3.1.53.0704n and 5.1.23.0402 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1370
|
2017-09-29 10:34 |
2009-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258030
|
- |
|
pidgin
|
pidgin
|
Buffer overflow in the decrypt_out function in Pidgin (formerly Gaim) before 2.5.6 allows remote attackers to cause a denial of service (application crash) via a QQ packet.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1374
|
2017-09-29 10:34 |
2009-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
