|
294701
|
- |
|
apple
|
safari
|
Apple Safari before 4.0.4 does not properly implement certain (1) Open Image and (2) Open Link menu options, which allows remote attackers to read local HTML files via a crafted web site.
|
NVD-CWE-Other
|
CVE-2009-2842
|
2017-09-19 10:29 |
2009-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294702
|
- |
|
ryan.mcgeary
|
wp-syntax
|
WP-Syntax plugin 0.9.1 and earlier for Wordpress, with register_globals enabled, allows remote attackers to execute arbitrary PHP code via the test_filter[wp_head] array parameter to test/index.php, …
|
CWE-20
Improper Input Validation
|
CVE-2009-2852
|
2017-09-19 10:29 |
2009-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294703
|
- |
|
cisco
|
ios
|
Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4T, 12.4XZ, and 12.4YA, when Zone-Based Policy Firewall SIP Inspection is enabled, allows remote attackers to cause a den…
|
NVD-CWE-noinfo
|
CVE-2009-2867
|
2017-09-19 10:29 |
2009-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294704
|
- |
|
cisco
|
ios
|
Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4MD, 12.4T, 12.4XZ, and 12.4YA allows remote attackers to cause a denial of service (device reload) via a crafted NTPv4 p…
|
NVD-CWE-noinfo
|
CVE-2009-2869
|
2017-09-19 10:29 |
2009-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294705
|
- |
|
artis.imag
|
basilic
|
Multiple SQL injection vulnerabilities in Basilic 1.5.13 allow remote attackers to execute arbitrary SQL commands via the idAuthor parameter to (1) index.php and possibly (2) allpubs.php in publicati…
|
CWE-89
SQL Injection
|
CVE-2009-2881
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294706
|
- |
|
arabless
|
saphplesson
|
SQL injection vulnerability in admin/login.php in SaphpLesson 4.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cp_username parameter, related …
|
CWE-89
SQL Injection
|
CVE-2009-2883
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294707
|
- |
|
phpsugar
|
ultimate_regnow_affiliate
|
SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate (URA) 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
|
CWE-89
SQL Injection
|
CVE-2009-2895
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294708
|
- |
|
kde
|
kmplayer
|
Buffer overflow in KMplayer 2.9.4.1433 and earlier allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long string in a subtitle (.srt) playlist f…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2896
|
2017-09-19 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294709
|
- |
|
openbsd
|
openssh
|
A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allows local users to gain privilege…
|
CWE-16
Configuration
|
CVE-2009-2904
|
2017-09-19 10:29 |
2009-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294710
|
- |
|
fedorahosted
|
newt
|
Heap-based buffer overflow in textbox.c in newt 0.51.5, 0.51.6, and 0.52.2 allows local users to cause a denial of service (application crash) or possibly execute arbitrary code via a request to disp…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2905
|
2017-09-19 10:29 |
2009-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
