|
264171
|
- |
|
webhelpdesk
|
web_help_desk
|
Multiple cross-site scripting (XSS) vulnerabilities in Web Help Desk 9.1.22 (evaluation version) allow remote attackers to inject arbitrary web script or HTML via the (1) Report Name, (2) Asset No., …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1261
|
2017-08-17 10:30 |
2009-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264172
|
- |
|
joomla
|
joomla
|
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5 through 1.5.9 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to the (1) com_admin component, …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1279
|
2017-08-17 10:30 |
2009-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264173
|
- |
|
joomla
|
joomla
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the com_media component for Joomla! 1.5.x through 1.5.9 allow remote attackers to hijack the authentication of unspecified victims via un…
|
CWE-352
Origin Validation Error
|
CVE-2009-1280
|
2017-08-17 10:30 |
2009-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264174
|
- |
|
cisco
|
subscriber_edge_services_manager
|
Cross-site scripting (XSS) vulnerability in Cisco Subscriber Edge Services Manager (SESM) allows remote attackers to inject arbitrary web script or HTML via the URI. NOTE: some of these details are …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1287
|
2017-08-17 10:30 |
2009-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264175
|
- |
|
tibco
|
enterprise_message_service
rtworks
smartsockets
smartsockets_rtserver
|
Stack-based buffer overflow in TIBCO SmartSockets before 6.8.2, SmartSockets Product Family (aka RTworks) before 4.0.5, and Enterprise Message Service (EMS) 4.0.0 through 5.1.1, as used in SmartSocke…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1291
|
2017-08-17 10:30 |
2009-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264176
|
- |
|
ibm
|
rational_clearcase
|
UCM-CQ in IBM Rational ClearCase 7.0.0.x before 7.0.0.5, 7.0.1.x before 7.0.1.4, and 7.1.x before 7.1.0.1 on Linux and AIX places a username and password on the command line, which allows local users…
|
CWE-200
Information Exposure
|
CVE-2009-1292
|
2017-08-17 10:30 |
2009-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264177
|
- |
|
ubuntu
|
73-oubuntu
ubuntu
|
The eCryptfs support utilities (ecryptfs-utils) 73-0ubuntu6.1 on Ubuntu 9.04 stores the mount passphrase in installation logs, which might allow local users to obtain access to the filesystem by read…
|
CWE-200
Information Exposure
|
CVE-2009-1296
|
2017-08-17 10:30 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264178
|
- |
|
twiki
|
twiki
|
Cross-site request forgery (CSRF) vulnerability in TWiki before 4.3.1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update pages, as demonstrated…
|
CWE-352
Origin Validation Error
|
CVE-2009-1339
|
2017-08-17 10:30 |
2009-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264179
|
- |
|
chcounter
|
chcounter
|
SQL injection vulnerability in administration/index.php in chCounter 3.1.3 allows remote attackers to execute arbitrary SQL commands via the login_name parameter. NOTE: the provenance of this inform…
|
CWE-89
SQL Injection
|
CVE-2009-1362
|
2017-08-17 10:30 |
2009-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264180
|
- |
|
mutt
|
mutt
|
Mutt 1.5.19, when linked against (1) OpenSSL (mutt_ssl.c) or (2) GnuTLS (mutt_ssl_gnutls.c), allows connections when only one TLS certificate in the chain is accepted instead of verifying the entire …
|
CWE-287
Improper Authentication
|
CVE-2009-1390
|
2017-08-17 10:30 |
2009-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
