|
275061
|
- |
|
openoffice
|
openoffice.org
|
Unspecified vulnerability in OpenOffice.org (OOo) has unknown impact and client-side attack vector, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side exploit." …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3571
|
2015-11-25 03:07 |
2009-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275062
|
- |
|
geodesicsolutions
|
geoauctions_premier
geoclassifieds_basic
|
SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and (2) GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b para…
|
CWE-89
SQL Injection
|
CVE-2006-3823
|
2015-09-2 01:59 |
2006-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275063
|
- |
|
geodesicsolutions
|
geoauctions_premier
geoclassifieds_basic
|
Successful exploitation requires that the 'accumulative feedback' feature is turned on.
|
CWE-89
SQL Injection
|
CVE-2006-3823
|
2015-09-2 01:59 |
2006-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275064
|
- |
|
roundcube
|
webmail
|
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the netwo…
|
CWE-200
Information Exposure
|
CVE-2010-0464
|
2015-08-25 01:43 |
2010-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275065
|
- |
|
roundcube
|
webmail
|
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that send arbitrary email…
|
CWE-352
Origin Validation Error
|
CVE-2009-4077
|
2015-08-25 01:40 |
2009-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275066
|
- |
|
roundcube
|
webmail
|
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that modify user informat…
|
CWE-352
Origin Validation Error
|
CVE-2009-4076
|
2015-08-25 01:38 |
2009-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275067
|
- |
|
ez
|
ez_publish
|
eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051128 allows remote authenticated users to cause a denial of service (Apache httpd segmentation fault) via a request…
|
CWE-399
Resource Management Errors
|
CVE-2005-4857
|
2015-07-29 00:04 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275068
|
- |
|
ez
|
ez_publish
|
The admin interface in eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051110 does not properly handle authorization errors, which allows remote attackers to obtain …
|
CWE-19
Data Processing Errors
|
CVE-2005-4856
|
2015-07-29 00:03 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275069
|
- |
|
ez
|
ez_publish
|
eZ publish 3.5 through 3.7 before 20050830 does not use a folder's read permissions to restrict notifications, which allows remote authenticated users to obtain sensitive information about changes to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4854
|
2015-07-28 23:55 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275070
|
- |
|
ez
|
ez_publish
|
The default configuration of the forum package in eZ publish 3.5 before 3.5.5, 3.6 before 3.6.2, 3.7 before 3.7.0rc2, and 3.8 before 20050818 does not restrict edit permissions to a posting's owner, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4853
|
2015-07-28 23:41 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
