|
258741
|
- |
|
arabless
|
saphplesson
|
SQL injection vulnerability in admin/login.php in SaphpLesson 4.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cp_username parameter, related …
|
CWE-89
SQL Injection
|
CVE-2009-2883
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258742
|
- |
|
phpsugar
|
ultimate_regnow_affiliate
|
SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate (URA) 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
|
CWE-89
SQL Injection
|
CVE-2009-2895
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258743
|
- |
|
kde
|
kmplayer
|
Buffer overflow in KMplayer 2.9.4.1433 and earlier allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long string in a subtitle (.srt) playlist f…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2896
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258744
|
- |
|
openbsd
|
openssh
|
A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allows local users to gain privilege…
|
CWE-16
Configuration
|
CVE-2009-2904
|
2017-09-19 10:29 |
2009-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258745
|
- |
|
fedorahosted
|
newt
|
Heap-based buffer overflow in textbox.c in newt 0.51.5, 0.51.6, and 0.52.2 allows local users to cause a denial of service (application crash) or possibly execute arbitrary code via a request to disp…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2905
|
2017-09-19 10:29 |
2009-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258746
|
- |
|
sun
|
opensolaris
solaris
|
The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a denial of service (panic) via vectors related to vnode function …
|
NVD-CWE-noinfo
|
CVE-2009-2912
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258747
|
- |
|
imtoo
|
mpeg_encoder
|
Stack-based buffer overflow in ImTOO MPEG Encoder 3.1.53 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted string in a (1) .cue or (2) .m3u…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2917
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258748
|
- |
|
elvinbts
|
elvinbts
|
Multiple cross-site scripting (XSS) vulnerabilities in Elvin 1.2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) component and (2) priority parameters to buglist.php; and …
|
CWE-79
Cross-site Scripting
|
CVE-2009-2920
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258749
|
- |
|
mocdesigns
|
php_news
|
Multiple SQL injection vulnerabilities in login.php in MOC Designs PHP News 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) newsuser parameter (User field) and (2) newspasswo…
|
CWE-89
SQL Injection
|
CVE-2009-2921
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258750
|
- |
|
bitmixsoft
|
php-lance
|
Multiple directory traversal vulnerabilities in BitmixSoft PHP-Lance 1.52 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) language parameter to show.php and (2) in parame…
|
CWE-22
Path Traversal
|
CVE-2009-2923
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
