|
262731
|
- |
|
moinmo
moinmoin
|
moinmoin
|
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) an AttachFile sub-actio…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1482
|
2017-08-17 10:30 |
2009-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262732
|
- |
|
aemuleplus
emuleplus
|
emule_plus
|
The logging feature in eMule Plus before 1.2e allows remote attackers to cause a denial of service (infinite loop) via unspecified attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-1485
|
2017-08-17 10:30 |
2009-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262733
|
- |
|
sendmail
|
sendmail
|
Heap-based buffer overflow in Sendmail before 8.13.2 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1490
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262734
|
- |
|
mcafee
|
groupshield
|
McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, wh…
|
CWE-20
Improper Input Validation
|
CVE-2009-1491
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262735
|
- |
|
memcachedb
|
memcached
|
The process_stat function in Memcached 1.2.8 discloses memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain potentially sensitive information by…
|
CWE-200
Information Exposure
|
CVE-2009-1494
|
2017-08-17 10:30 |
2009-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262736
|
- |
|
drupal
|
news_page
|
SQL injection vulnerability in the News Page module 5.x before 5.x-1.2 for Drupal allows remote authenticated users, with News Page nodes create and edit privileges, to execute arbitrary SQL commands…
|
CWE-89
SQL Injection
|
CVE-2009-1505
|
2017-08-17 10:30 |
2009-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262737
|
- |
|
ibm
|
tivoli_storage_manager_client
tivoli_storage_manager_express
|
Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1520
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262738
|
- |
|
ibm
|
tivoli_storage_manager_client
tivoli_storage_manager_express
|
Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.5, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17, and t…
|
NVD-CWE-noinfo
|
CVE-2009-1521
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262739
|
- |
|
ibm
|
tivoli_storage_manager_client
|
The IBM Tivoli Storage Manager (TSM) client 5.5.0.0 through 5.5.1.17 on AIX and Windows, when SSL is used, allows remote attackers to conduct unspecified man-in-the-middle attacks and read arbitrary …
|
NVD-CWE-Other
|
CVE-2009-1522
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262740
|
- |
|
jbmc-software
|
directadmin
|
CMD_DB in JBMC Software DirectAdmin before 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.
|
CWE-20
Improper Input Validation
|
CVE-2009-1525
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
