|
262451
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.11.1.2 allow remote attackers to inject arbitrary web script or HTML via certain input available in (1) PHP_SELF in (a) serv…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5589
|
2017-08-17 10:29 |
2007-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262452
|
- |
|
vidalia-project
|
vidalia_bundle
|
Vidalia bundle before 0.1.2.18, when running on Windows and Mac OS X, installs Privoxy with a configuration file (config.txt or config) that contains insecure (1) enable-remote-toggle and (2) enable-…
|
CWE-16
Configuration
|
CVE-2007-6722
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262453
|
- |
|
anonymityanywhere
|
tork
|
TorK before 0.22, when running on Windows and Mac OS X, installs Privoxy with a configuration file (config.txt or config) that contains insecure (1) enable-remote-toggle and (2) enable-edit-actions s…
|
CWE-16
Configuration
|
CVE-2007-6723
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262454
|
- |
|
vidalia-project
|
vidalia_bundle
|
Vidalia bundle before 0.1.2.18, when running on Windows, installs Privoxy with a configuration file (config.txt or config) that contains an insecure enable-remote-http-toggle setting, which allows re…
|
CWE-16
Configuration
|
CVE-2007-6724
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262455
|
- |
|
apache
dojotoolkit
|
struts
dojo
|
Multiple cross-site scripting (XSS) vulnerabilities in Dojo 0.4.1 and 0.4.2, as used in Apache Struts and other products, allow remote attackers to inject arbitrary web script or HTML via unspecified…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6726
|
2017-08-17 10:29 |
2009-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262456
|
- |
|
ixprim-cms
|
ixprim
|
PHP remote file inclusion vulnerability in mod/nc_phpmyadmin/core/libraries/Theme_Manager.class.php in Ixprim 2.0 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified par…
|
CWE-94
Code Injection
|
CVE-2006-7237
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262457
|
- |
|
acid
secureideas
|
analysis_console_for_intrusion_databases
basic_analysis_and_security_engine
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engin…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4878
|
2017-08-17 10:29 |
2009-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262458
|
- |
|
jax_scripts
|
jax_guestbook
|
Multiple cross-site scripting (XSS) vulnerabilities in jax_guestbook.php in Jax Guestbook 3.1 and 3.31 allow remote attackers to inject arbitrary web script or HTML via the (1) gmt_ofs and (2) langua…
|
CWE-79
Cross-site Scripting
|
CVE-2005-4879
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262459
|
- |
|
rpm
|
rpm
|
lib/fsm.c in RPM before 4.4.3 does not properly reset the metadata of an executable file during deletion of the file in an RPM package removal, which might allow local users to gain privileges by cre…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4889
|
2017-08-17 10:29 |
2010-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262460
|
- |
|
ibm
|
tivoli_storage_manager
|
The server in IBM Tivoli Storage Manager (TSM) 4.2.x on MVS, 5.1.9.x before 5.1.9.1, 5.1.x before 5.1.10, 5.2.2.x before 5.2.2.3, 5.2.x before 5.2.3, 5.3.x before 5.3.0, and 6.x before 6.1, when the …
|
NVD-CWE-Other
|
CVE-2004-2762
|
2017-08-17 10:29 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
