|
258381
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or po…
|
NVD-CWE-noinfo
|
CVE-2009-3383
|
2017-09-19 10:29 |
2009-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258382
|
- |
|
apple
|
safari
|
Multiple unspecified vulnerabilities in WebKit in Apple Safari before 4.0.4 on Windows allow remote FTP servers to execute arbitrary code, cause a denial of service (application crash), or obtain sen…
|
NVD-CWE-noinfo
|
CVE-2009-3384
|
2017-09-19 10:29 |
2009-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258383
|
- |
|
mozilla
|
seamonkey
|
The mail component in Mozilla SeaMonkey before 1.1.19 does not properly restrict execution of scriptable plugin content, which allows user-assisted remote attackers to obtain sensitive information vi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3385
|
2017-09-19 10:29 |
2010-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258384
|
- |
|
mozilla
|
firefox
seamonkey
|
liboggplay in Mozilla Firefox 3.5.x before 3.5.6 and SeaMonkey before 2.0.1 might allow context-dependent attackers to cause a denial of service (application crash) or execute arbitrary code via unsp…
|
CWE-399
Resource Management Errors
|
CVE-2009-3388
|
2017-09-19 10:29 |
2009-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258385
|
- |
|
mozilla
|
firefox
seamonkey
|
Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used in Mozilla Firefox 3.5 before 3.5.6 and SeaMonkey before 2.0.1, allows remote attackers to cause a denial of service (application …
|
CWE-189
Numeric Errors
|
CVE-2009-3389
|
2017-09-19 10:29 |
2009-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258386
|
- |
|
idojoomla
|
com_idoblog
|
SQL injection vulnerability in the IDoBlog (com_idoblog) component 1.1 build 30 for Joomla! allows remote attackers to execute arbitrary SQL commands via the userid parameter in a profile action to i…
|
CWE-89
SQL Injection
|
CVE-2009-3417
|
2017-09-19 10:29 |
2009-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258387
|
- |
|
intesync
|
miniweb
|
SQL injection vulnerability in index.php in the Publisher module 2.0 for Miniweb allows remote attackers to execute arbitrary SQL commands via the historymonth parameter.
|
CWE-89
SQL Injection
|
CVE-2009-3419
|
2017-09-19 10:29 |
2009-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258388
|
- |
|
intesync
|
miniweb
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in the Publisher module 2.0 for Miniweb allow remote attackers to inject arbitrary web script or HTML via the (1) begin parameter and …
|
CWE-79
Cross-site Scripting
|
CVE-2009-3420
|
2017-09-19 10:29 |
2009-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258389
|
- |
|
zenas
|
paoliber
|
login.php in Zenas PaoLiber 1.1, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
|
CWE-287
Improper Authentication
|
CVE-2009-3422
|
2017-09-19 10:29 |
2009-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258390
|
- |
|
zenas
|
paolink
|
login.php in Zenas PaoLink 1.0, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative access by setting the login_ok parameter to 1.
|
CWE-287
Improper Authentication
|
CVE-2009-3423
|
2017-09-19 10:29 |
2009-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
