|
256621
|
- |
|
tim_hockin
|
acpid
|
ACPI Event Daemon (acpid) before 1.0.10 allows remote attackers to cause a denial of service (CPU consumption and connectivity loss) by opening a large number of UNIX sockets without closing them, wh…
|
CWE-399
Resource Management Errors
|
CVE-2009-0798
|
2017-09-29 10:34 |
2009-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256622
|
- |
|
zfeeder
|
zfeeder
|
zFeeder 1.6 allows remote attackers to gain administrative access via a direct request to admin.php.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0807
|
2017-09-29 10:34 |
2009-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256623
|
- |
|
xatrix
|
xguestbook
|
SQL injection vulnerability in login.php in xGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the user parameter.
|
CWE-89
SQL Injection
|
CVE-2009-0810
|
2017-09-29 10:34 |
2009-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256624
|
- |
|
imera
|
teamlinks
|
Insecure method vulnerability in the ImeraIEPlugin ActiveX control (ImeraIEPlugin.dll 1.0.2.54) in Imera TeamLinks Client allows remote attackers to force the download and execution of arbitrary URLs…
|
CWE-20
Improper Input Validation
|
CVE-2009-0813
|
2017-09-29 10:34 |
2009-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256625
|
- |
|
freedville
|
bloghelper
|
BlogHelper stores common_db.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0826
|
2017-09-29 10:34 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256626
|
- |
|
freedville
|
pollhelper
|
PollHelper stores poll.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0827
|
2017-09-29 10:34 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256627
|
- |
|
freedville
|
quotebook
|
QuoteBook stores quotes.inc under the web root with insufficient access control, which allows remote attackers to obtain sensitive database information, including user credentials, via a direct reque…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0828
|
2017-09-29 10:34 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256628
|
- |
|
php-fusion
|
members_cv_module
|
SQL injection vulnerability in members.php in the Members CV (job) module 1.0 for PHP-Fusion, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands vi…
|
CWE-89
SQL Injection
|
CVE-2009-0831
|
2017-09-29 10:34 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256629
|
- |
|
myplugins
|
gen_msn
|
Heap-based buffer overflow in gen_msn.dll in the gen_msn plugin 0.31 for Winamp 5.541 allows remote attackers to execute arbitrary code via a playlist (.pls) file with a long URL in the File1 field. …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0833
|
2017-09-29 10:34 |
2009-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256630
|
- |
|
matteoiammarrone
|
s-cms
|
SQL injection vulnerability in admin/delete_page.php in S-Cms 1.1 Stable allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2009-0863
|
2017-09-29 10:34 |
2009-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
