|
294041
|
- |
|
opera
|
opera_browser
|
Opera before 10.00 does not properly handle a (1) '\0' character or (2) invalid wildcard character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-i…
|
CWE-310
Cryptographic Issues
|
CVE-2009-3044
|
2017-09-19 10:29 |
2009-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294042
|
- |
|
opera
|
opera_browser
|
Opera before 10.00 on Linux, Solaris, and FreeBSD does not properly implement the "INPUT TYPE=file" functionality, which allows remote attackers to trick a user into uploading an unintended file via …
|
CWE-20
Improper Input Validation
|
CVE-2009-3048
|
2017-09-19 10:29 |
2009-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294043
|
- |
|
absoluteanime
|
prime_quick_style
|
SQL injection vulnerability in root/includes/prime_quick_style.php in the Prime Quick Style addon before 1.2.3 for phpBB 3 allows remote authenticated users to execute arbitrary SQL commands via the …
|
CWE-89
SQL Injection
|
CVE-2009-3052
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294044
|
- |
|
jvitals
|
com_agora
|
Directory traversal vulnerability in the Agora (com_agora) component 3.0.0b for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the a…
|
CWE-22
Path Traversal
|
CVE-2009-3053
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294045
|
- |
|
artetics
|
com_artportal
|
SQL injection vulnerability in the Artetics.com Art Portal (com_artportal) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the portalid parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2009-3054
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294046
|
- |
|
dlecms
|
dle
|
PHP remote file inclusion vulnerability in engine/api/api.class.php in DataLife Engine (DLE) 8.2 allows remote attackers to execute arbitrary PHP code via a URL in the dle_config_api parameter.
|
CWE-94
Code Injection
|
CVE-2009-3055
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294047
|
- |
|
bas_bloemsaat
|
kingcms
|
PHP remote file inclusion vulnerability in include/engine/content/elements/menu.php in KingCMS 0.6.0 allows remote attackers to execute arbitrary PHP code via a URL in the CONFIG[AdminPath] parameter.
|
CWE-94
Code Injection
|
CVE-2009-3056
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294048
|
- |
|
aksoft
|
akplayer
|
Stack-based buffer overflow in akPlayer 1.9.0 allows remote attackers to execute arbitrary code via a long string in a .plt playlist file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3058
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294049
|
- |
|
phplivesupport.
|
phplive\!
|
SQL injection vulnerability in message_box.php in OSI Codes PHP Live! 3.3 allows remote attackers to execute arbitrary SQL commands via the deptid parameter.
|
CWE-89
SQL Injection
|
CVE-2009-3062
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294050
|
- |
|
indianpulses
|
com_gameserver
|
SQL injection vulnerability in the Game Server (com_gameserver) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a gamepanel action to index…
|
CWE-89
SQL Injection
|
CVE-2009-3063
|
2017-09-19 10:29 |
2009-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
