|
354661
|
- |
|
nicplex
|
plexcart_x3
|
SQL injection vulnerability in the search function in Plexum PLEXCART X3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly involving the (1) s_itemname and (…
|
CWE-89
SQL Injection
|
CVE-2005-4315
|
2011-03-7 14:00 |
2005-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354662
|
- |
|
apple
|
safari
webkit
|
WebKit.dll in WebKit, as used in Safari.exe 4.531.9.1 in Apple Safari, allows remote attackers to cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an in…
|
CWE-399
Resource Management Errors
|
CVE-2010-1729
|
2011-02-17 15:55 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354663
|
- |
|
apple
|
safari
webkit
|
WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6, and before 4.1 on Mac OS X 10.4, does not properly handle clipboard (1) drag and (2) paste operations for URLs, which allows user-assi…
|
CWE-200
Information Exposure
|
CVE-2010-1388
|
2011-02-17 15:54 |
2010-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354664
|
- |
|
fetchmail
|
fetchmail
|
Fetchmail (aka fetchmail-ssl) before 5.8.17 allows a remote malicious (1) IMAP server or (2) POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2001-1009
|
2011-02-16 14:00 |
2001-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354665
|
- |
|
fetchmail
|
fetchmail
|
fetchmailconf in fetchmail before 5.7.4 allows local users to overwrite files of other users via a symlink attack on temporary files.
|
CWE-59
Link Following
|
CVE-2001-1378
|
2011-02-16 14:00 |
2001-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354666
|
- |
|
fetchmail
|
fetchmail
|
fetchmail email client before 5.9.10 does not properly limit the maximum number of messages available, which allows a remote IMAP server to overwrite memory via a message count that exceeds the bound…
|
CWE-20
Improper Input Validation
|
CVE-2002-0146
|
2011-02-16 05:45 |
2002-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354667
|
- |
|
php
|
php
|
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbitrary…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-2094
|
2011-01-26 15:48 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354668
|
- |
|
typsoft
|
typsoft_ftp_server
|
Typsoft FTP Server 1.11, with "Sub Directory Include" enabled, allows remote attackers to cause a denial of service (crash) by sending multiple RETR commands. NOTE: it was later reported that 1.10 i…
|
CWE-399
Resource Management Errors
|
CVE-2005-3294
|
2011-01-26 14:00 |
2005-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354669
|
- |
|
wordpress
|
wordpress
|
WordPress 2.9 before 2.9.2 allows remote authenticated users to read trash posts from other authors via a direct request with a modified p parameter.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0682
|
2011-01-19 15:55 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354670
|
- |
|
phpf1
|
max\'s_image_uploader
|
Unrestricted file upload vulnerability in maxImageUpload/index.php in PHP F1 Max's Image Uploader 1.0, when Apache is not configured to handle the mime-type for files with pjpeg or jpeg extensions, a…
|
NVD-CWE-Other
|
CVE-2010-0390
|
2011-01-12 14:00 |
2010-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
