|
263061
|
- |
|
pjhome
|
puterjams_blog
|
SQL injection vulnerability in action.asp in PuterJam's Blog (PJBlog3) 3.0.6.170 allows remote attackers to execute arbitrary SQL commands via the cname parameter in a checkAlias action, as exploited…
|
CWE-89
SQL Injection
|
CVE-2009-1481
|
2017-08-17 10:30 |
2009-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263062
|
- |
|
moinmo
moinmoin
|
moinmoin
|
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) an AttachFile sub-actio…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1482
|
2017-08-17 10:30 |
2009-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263063
|
- |
|
aemuleplus
emuleplus
|
emule_plus
|
The logging feature in eMule Plus before 1.2e allows remote attackers to cause a denial of service (infinite loop) via unspecified attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-1485
|
2017-08-17 10:30 |
2009-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263064
|
- |
|
sendmail
|
sendmail
|
Heap-based buffer overflow in Sendmail before 8.13.2 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1490
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263065
|
- |
|
mcafee
|
groupshield
|
McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, wh…
|
CWE-20
Improper Input Validation
|
CVE-2009-1491
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263066
|
- |
|
memcachedb
|
memcached
|
The process_stat function in Memcached 1.2.8 discloses memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain potentially sensitive information by…
|
CWE-200
Information Exposure
|
CVE-2009-1494
|
2017-08-17 10:30 |
2009-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263067
|
- |
|
drupal
|
news_page
|
SQL injection vulnerability in the News Page module 5.x before 5.x-1.2 for Drupal allows remote authenticated users, with News Page nodes create and edit privileges, to execute arbitrary SQL commands…
|
CWE-89
SQL Injection
|
CVE-2009-1505
|
2017-08-17 10:30 |
2009-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263068
|
- |
|
ibm
|
tivoli_storage_manager_client
tivoli_storage_manager_express
|
Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) client 5.1.0.0 through 5.1.8.2, 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.4, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1520
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263069
|
- |
|
ibm
|
tivoli_storage_manager_client
tivoli_storage_manager_express
|
Unspecified vulnerability in the Java GUI in the IBM Tivoli Storage Manager (TSM) client 5.2.0.0 through 5.2.5.3, 5.3.0.0 through 5.3.6.5, 5.4.0.0 through 5.4.2.6, and 5.5.0.0 through 5.5.1.17, and t…
|
NVD-CWE-noinfo
|
CVE-2009-1521
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263070
|
- |
|
ibm
|
tivoli_storage_manager_client
|
The IBM Tivoli Storage Manager (TSM) client 5.5.0.0 through 5.5.1.17 on AIX and Windows, when SSL is used, allows remote attackers to conduct unspecified man-in-the-middle attacks and read arbitrary …
|
NVD-CWE-Other
|
CVE-2009-1522
|
2017-08-17 10:30 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
