|
260261
|
- |
|
ezra_barnett_gildesgame
|
og_subgroups
|
Cross-site scripting (XSS) vulnerability in the Subgroups for Organic Groups (OG) module 5.x before 5.x-4.0 and 5.x before 5.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4063
|
2017-08-17 10:31 |
2009-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260262
|
- |
|
puntolatinoclub
|
gallery_assist_module
|
Cross-site scripting (XSS) vulnerability in the Gallery Assist module 6.x before 6.x-1.7 for Drupal allows remote attackers to inject arbitrary web script or HTML via node titles.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4064
|
2017-08-17 10:31 |
2009-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260263
|
- |
|
jeff_miccolis
|
strongarm_module
|
Cross-site scripting (XSS) vulnerability in the settings page in the Strongarm module 6.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the value field …
|
CWE-79
Cross-site Scripting
|
CVE-2009-4065
|
2017-08-17 10:31 |
2009-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260264
|
- |
|
drupal
paul_beaney
|
drupal
phplist
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the "My Account" feature in PHPList Integration module 5 before 5.x-1.2 and 6 before 6.x-1.1 for Drupal allow remote attackers to hijack …
|
CWE-352
Origin Validation Error
|
CVE-2009-4066
|
2017-08-17 10:31 |
2009-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260265
|
- |
|
sun
|
opensolaris
solaris
|
Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown …
|
NVD-CWE-noinfo
|
CVE-2009-4075
|
2017-08-17 10:31 |
2009-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260266
|
- |
|
redmine
|
redmine
|
Multiple cross-site scripting (XSS) vulnerabilities in Redmine 0.8.5 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4078
|
2017-08-17 10:31 |
2009-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260267
|
- |
|
redmine
|
redmine
|
Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5 and earlier allows remote attackers to hijack the authentication of users for requests that delete a ticket via unspecified vectors.
|
CWE-352
Origin Validation Error
|
CVE-2009-4079
|
2017-08-17 10:31 |
2009-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260268
|
- |
|
lanifex
|
outreach_project_tool
|
PHP remote file inclusion vulnerability in forums/Forum_Include/index.php in Outreach Project Tool (OPT) 1.2.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CRM_p…
|
CWE-94
Code Injection
|
CVE-2009-4082
|
2017-08-17 10:31 |
2009-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260269
|
- |
|
jabba_laci
|
phptraverser
|
PHP remote file inclusion vulnerability in assets/plugins/mp3_id/mp3_id.php in PHP Traverser 0.8.0 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[BASE] parameter. NOT…
|
CWE-94
Code Injection
|
CVE-2009-4085
|
2017-08-17 10:31 |
2009-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260270
|
- |
|
javascript
|
xerver_http_server
|
CRLF injection vulnerability in Xerver HTTP Server 4.31 and 4.32 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via certain byte sequences at the…
|
CWE-20
Improper Input Validation
|
CVE-2009-4086
|
2017-08-17 10:31 |
2009-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
