|
307121
|
- |
|
cacti
|
cacti
|
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-1431
|
2012-02-16 13:02 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307122
|
- |
|
hp
|
power_manager
|
Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3999
|
2012-02-14 12:49 |
2010-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307123
|
- |
|
cafuego
|
simple_document_management_system
|
Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and earlier allow remote attackers to execute arbitrary SQL commands via the (1) folder_id parameter in list…
|
CWE-89
SQL Injection
|
CVE-2005-3877
|
2012-02-7 14:00 |
2005-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307124
|
- |
|
sitracker
|
support_incident_tracker
|
Multiple unspecified vulnerabilities in Salford Software Support Incident Tracker (SiT!) before 3.30 have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2007-5635
|
2012-02-2 14:00 |
2007-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307125
|
- |
|
kde
|
kdelibs
|
KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle atta…
|
CWE-310
Cryptographic Issues
|
CVE-2009-2702
|
2012-01-19 12:40 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307126
|
- |
|
semanticscuttle
|
semanticscuttle
|
Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow remote attackers to (1) hijack the authentication of administrators via unknown vectors or (2) hijack t…
|
CWE-352
Origin Validation Error
|
CVE-2009-0708
|
2012-01-5 14:00 |
2009-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307127
|
- |
|
xzeroscripts
|
xzero_community_classifieds
|
Cross-site scripting (XSS) vulnerability in index.php in XZero Community Classifieds 4.97.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded file…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2914
|
2011-12-29 14:00 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307128
|
- |
|
asus
|
asus_wl-330ge
|
Unspecified vulnerability on the ASUS WL-330gE has unknown impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. NOTE: as of 20090903, this discl…
|
NVD-CWE-noinfo
|
CVE-2009-3091
|
2011-12-21 14:00 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307129
|
- |
|
sun
x.org
|
opensolaris
solaris
x11
|
xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 9 and 10, OpenSolaris snv_109 through snv_122, and X11 6.4.1 on Solaris 8 does not properly handle Accessibility support, which allows local users…
|
NVD-CWE-Other
|
CVE-2009-3100
|
2011-12-21 14:00 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307130
|
- |
|
sap
|
crystal_reports_server
|
Heap-based buffer overflow in SAP Crystal Reports Server 2008 has unknown impact and attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.3 through 8.11. NOTE: as of …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3345
|
2011-12-20 14:00 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
