|
258641
|
- |
|
geccbblite
|
geccbblite
|
Multiple cross-site scripting (XSS) vulnerabilities in geccBBlite 0.1 allow remote attackers to inject arbitrary web script or HTML via the postatoda parameter to (1) rispondi.php and (2) scrivi.php,…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4649
|
2017-08-17 10:31 |
2010-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258642
|
- |
|
novell
|
edirectory
|
The dhost web service in Novell eDirectory 8.8.5 uses a predictable session cookie, which makes it easier for remote attackers to hijack sessions via a modified cookie.
|
CWE-310
Cryptographic Issues
|
CVE-2009-4655
|
2017-08-17 10:31 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258643
|
- |
|
novell
|
groupwise
|
Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 7.0 before 7.03 HP4 and 8.0 before 8.0 SP1 allows remote attackers to inject arbitrary web script or HTML via t…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4662
|
2017-08-17 10:31 |
2010-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258644
|
- |
|
fwbuilder
|
firewall_builder
|
Firewall Builder 3.0.4, 3.0.5, and 3.0.6, when running on Linux, allows local users to gain privileges via a symlink attack on an unspecified temporary file that is created by the iptables script.
|
CWE-59
Link Following
|
CVE-2009-4664
|
2017-08-17 10:31 |
2010-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258645
|
- |
|
winn
|
winn_guestbook
|
Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4678
|
2017-08-17 10:31 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258646
|
- |
|
edgephp
|
ezodiak
|
Cross-site scripting (XSS) vulnerability in index.php in EZodiak allows remote attackers to inject arbitrary web script or HTML via the sign parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4684
|
2017-08-17 10:31 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258647
|
- |
|
phpscriptsnow
|
astrology
|
Cross-site scripting (XSS) vulnerability in celebrities.php in PHP Scripts Now Astrology allows remote attackers to inject arbitrary web script or HTML via the day parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4685
|
2017-08-17 10:31 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258648
|
- |
|
phplemon
|
adquick
|
Cross-site scripting (XSS) vulnerability in account.php in phplemon AdQuick 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the red_url parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4686
|
2017-08-17 10:31 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258649
|
- |
|
yourfreeworld
|
programs_rating_script
|
Multiple cross-site scripting (XSS) vulnerabilities in YourFreeWorld Programs Rating Script allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) rate.php and (2) …
|
CWE-79
Cross-site Scripting
|
CVE-2009-4690
|
2017-08-17 10:31 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258650
|
- |
|
radscripts
|
radlance
|
Cross-site scripting (XSS) vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to inject arbitrary web script or HTML via the fid parameter in a view_forum action. NOT…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4694
|
2017-08-17 10:31 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
