|
344661
|
- |
|
bernhard_frohlich
|
phpcom
|
Multiple SQL injection vulnerabilities in phpCommunity 2 2.1.8, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the forum_id parameter in a forum a…
|
CWE-89
SQL Injection
|
CVE-2009-4884
|
2018-10-11 04:49 |
2010-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344662
|
- |
|
bernhard_frohlich
|
phpcom
|
Cross-site scripting (XSS) vulnerability in templates/1/login.php in phpCommunity 2 2.1.8 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4885
|
2018-10-11 04:49 |
2010-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344663
|
- |
|
bernhard_frohlich
|
phpcom
|
Multiple directory traversal vulnerabilities in phpCommunity 2 2.1.8 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) file parameter to module/admin/files/show_file.php an…
|
CWE-22
Path Traversal
|
CVE-2009-4886
|
2018-10-11 04:49 |
2010-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344664
|
- |
|
retrieve
|
vbook
|
Multiple cross-site scripting (XSS) vulnerabilities in the login application in vBook 4.2.17 allow remote attackers to inject arbitrary web script or HTML via the (1) title and (2) message parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4890
|
2018-10-11 04:49 |
2010-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344665
|
- |
|
adobe
|
shockwave_player
|
Heap-based buffer overflow in Adobe Shockwave Player before 11.5.6.606 allows remote attackers to execute arbitrary code via a crafted 3D model in a Shockwave file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4002
|
2018-10-11 04:48 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344666
|
- |
|
adobe
|
shockwave_player
|
Multiple integer overflows in Adobe Shockwave Player before 11.5.6.606 allow remote attackers to execute arbitrary code via (1) an unspecified block type in a Shockwave file, leading to a heap-based …
|
CWE-189
Numeric Errors
|
CVE-2009-4003
|
2018-10-11 04:48 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344667
|
- |
|
hp
|
system_management_homepage
|
Cross-site scripting (XSS) vulnerability in proxy/smhui/getuiinfo in HP System Management Homepage (SMH) before 6.0 allows remote attackers to inject arbitrary web script or HTML via the servercert p…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4185
|
2018-10-11 04:48 |
2010-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344668
|
- |
|
realnetworks
|
realplayer
realplayer_enterprise
realplayer_sp
helix_player
|
Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4241
|
2018-10-11 04:48 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344669
|
- |
|
realnetworks
|
realplayer
realplayer_enterprise
realplayer_sp
helix_player
|
Specific affected release information can be found from RealNetworks at:
http://service.real.com/realplayer/security/01192010_player/en/
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4241
|
2018-10-11 04:48 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344670
|
- |
|
realnetworks
|
realplayer
realplayer_enterprise
realplayer_sp
helix_player
|
Heap-based buffer overflow in the CGIFCodec::GetPacketBuffer function in datatype/image/gif/common/gifcodec.cpp in RealNetworks RealPlayer 10; RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741; RealPla…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4242
|
2018-10-11 04:48 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
