|
262991
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Help Viewer in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 does not verify that certain Cascading Style Sheets (CSS) are located in a registered help book, which allows remote attackers to execute …
|
CWE-20
Improper Input Validation
|
CVE-2009-0942
|
2017-08-17 10:30 |
2009-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262992
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Help Viewer in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 does not verify that HTML pathnames are located in a registered help book, which allows remote attackers to execute arbitrary code via a h…
|
CWE-20
Improper Input Validation
|
CVE-2009-0943
|
2017-08-17 10:30 |
2009-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262993
|
- |
|
futomi
|
mp_form_mail_cgi
|
Unspecified vulnerability in Futomi's CGI Cafe MP Form Mail CGI eCommerce 1.3.0 and earlier, and CGI Professional 3.2.2 and earlier, allows remote attackers to gain administrative privileges via unkn…
|
NVD-CWE-noinfo
|
CVE-2009-0962
|
2017-08-17 10:30 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262994
|
- |
|
phpfox
|
phpfox
|
Cross-site request forgery (CSRF) vulnerability in account/settings/account/index.php in phpFoX 1.6.21 allows remote attackers to hijack the authentication of administrators for requests that change …
|
CWE-352
Origin Validation Error
|
CVE-2009-0969
|
2017-08-17 10:30 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262995
|
- |
|
phpprobid
|
php_pro_bid
|
PHP remote file inclusion vulnerability in includes/class_image.php in PHP Pro Bid 6.05, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the fileE…
|
CWE-94
Code Injection
|
CVE-2009-0970
|
2017-08-17 10:30 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262996
|
- |
|
futomi
|
access_analyzer_cgi
|
Cross-site scripting (XSS) vulnerability in futomi's CGI Cafe Access Analyzer CGI Standard Version 3.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-0971
|
2017-08-17 10:30 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262997
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the Upgrade component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown …
|
NVD-CWE-noinfo
|
CVE-2009-0987
|
2017-08-17 10:30 |
2009-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262998
|
- |
|
oracle
|
database_10g
database_11g
database_9i
|
Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a diffe…
|
NVD-CWE-noinfo
|
CVE-2009-0991
|
2017-08-17 10:30 |
2009-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262999
|
- |
|
oracle
|
bea_product_suite
|
Unspecified vulnerability in Oracle BEA WebLogic Portal 8.1 Gold through SP6 allows remote authenticated users to gain privileges via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-1001
|
2017-08-17 10:30 |
2009-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263000
|
- |
|
oracle
|
bea_product_suite
|
Unspecified vulnerability in Oracle BEA WebLogic Server 10.3, 10.0 Gold through MP1, 9.2 Gold through MP3, 9.1, 9.0, 8.1 Gold through SP6, and 7.0 Gold through SP7 allows remote attackers to gain pri…
|
NVD-CWE-noinfo
|
CVE-2009-1002
|
2017-08-17 10:30 |
2009-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
