|
307611
|
- |
|
francisco_cifuentes
|
vote_for_tt_news
|
SQL injection vulnerability in the Vote rank for news (vote_for_tt_news) extension 1.0.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-0334
|
2011-07-25 13:00 |
2010-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307612
|
- |
|
symantec
|
ghost_solutions_suite
|
Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connections between the console and the Ghost Management Agent, which allows remote attackers to execute a…
|
CWE-287
Improper Authentication
|
CVE-2008-0640
|
2011-07-25 13:00 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307613
|
- |
|
gallarific
|
gallarific
|
Gallarific Free Edition 1.1 does not require authentication for (1) photos.php, (2) comments.php, and (3) gallery.php in gadmin/, which allows remote attackers to edit objects via a direct request, d…
|
CWE-287
Improper Authentication
|
CVE-2008-1469
|
2011-07-25 13:00 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307614
|
- |
|
gallarific
|
gallarific
|
More information available at: http://www.securityfocus.com/bid/28163/info
|
CWE-287
Improper Authentication
|
CVE-2008-1469
|
2011-07-25 13:00 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307615
|
- |
|
linpha
|
linpha
|
Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.3.3 allow remote attackers to inject arbitrary web script or HTML via (1) ftp/index.php, (2) viewer.php, (3) functions/other.php…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1487
|
2011-07-25 13:00 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307616
|
- |
|
netbsd
|
netbsd
|
The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an…
|
CWE-20
Improper Input Validation
|
CVE-2006-6653
|
2011-07-25 13:00 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307617
|
- |
|
netbsd
|
netbsd
|
This vulnerability is addressed in the following product updates:
NetBSD, NetBSD, current (10/23/2006)
NetBSD, NetBSD, 3.0 (10/24/2006)
NetBSD, NetBSD, 3.0.1 (10/24/2006)
NetBSD, NetBSD, 2.0 (10…
|
CWE-20
Improper Input Validation
|
CVE-2006-6653
|
2011-07-25 13:00 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307618
|
- |
|
web-app.net
|
webapp
|
Cross-site scripting (XSS) vulnerability in Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET), allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2006-6687
|
2011-07-25 13:00 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307619
|
- |
|
clamav
|
clamav
|
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB fil…
|
CWE-399
Resource Management Errors
|
CVE-2005-3501
|
2011-07-14 13:00 |
2005-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307620
|
- |
|
php
|
php
|
The compress.bzip2:// URL wrapper provided by the bz2 extension in PHP before 4.4.7, and 5.x before 5.2.2, does not implement safemode or open_basedir checks, which allows remote attackers to read bz…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-1461
|
2011-07-13 13:00 |
2007-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
