|
258301
|
- |
|
jbmc-software
|
directadmin
|
CMD_DB in JBMC Software DirectAdmin before 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.
|
CWE-20
Improper Input Validation
|
CVE-2009-1525
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258302
|
- |
|
sco
|
unixware
|
Unspecified vulnerability in the IGMP driver in SCO Unixware Release 7.1.4 Maintenance Pack 4 allows attackers to cause a denial of service (system panic) via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2009-1552
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258303
|
- |
|
cisco
|
wvc54gca
|
Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allow remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1557
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258304
|
- |
|
cisco
|
wvc54gca
|
Directory traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote attackers to read arbitrary files via a %2e. (enc…
|
CWE-22
Path Traversal
|
CVE-2009-1558
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258305
|
- |
|
cisco
|
wvc54gca
|
Absolute path traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R24 and possibly 1.00R22 allows remote attackers to read arbitrary files vi…
|
CWE-22
Path Traversal
|
CVE-2009-1559
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258306
|
- |
|
cisco
|
wvc54gc
|
The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in (1) pass_wd.htm and (2) Wsecurity.htm, which allows remot…
|
CWE-310
Cryptographic Issues
|
CVE-2009-1560
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258307
|
- |
|
quagga
|
quagga
|
The BGP daemon (bgpd) in Quagga 0.99.11 and earlier allows remote attackers to cause a denial of service (crash) via an AS path containing ASN elements whose string representation is longer than expe…
|
NVD-CWE-Other
|
CVE-2009-1572
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258308
|
- |
|
debian
redhat
ubuntu
branden_robinson
|
debian_linux
fedora
linux
xvfb-run
|
xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-1573
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258309
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in Drupal 5.x before 5.17 and 6.x before 6.11, as used in vbDrupal before 5.17.0, allows remote attackers to inject arbitrary web script or HTML via crafted U…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1575
|
2017-08-17 10:30 |
2009-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258310
|
- |
|
cgi_rescue
|
cgi_rescue_minibbs
|
Cross-site scripting (XSS) vulnerability in CGI RESCUE MiniBBS 8t before 8.95t, 8 before 8.95, 9 before 9.08, and 10 before 10.32 allows remote attackers to inject arbitrary web script or HTML via un…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1588
|
2017-08-17 10:30 |
2009-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
