|
299171
|
- |
|
django_project
|
django
|
Cross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2302
|
2017-08-8 10:30 |
2008-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299172
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Heap-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to execute arbitrary code via a document containing a crafted font, r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2305
|
2017-08-8 10:30 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299173
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in Alias Manager in Apple Mac OS X 10.5.1 and earlier on Intel platforms allows local users to gain privileges or cause a denial of service (memory corruption and applicatio…
|
NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2308
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299174
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Incomplete blacklist vulnerability in CoreTypes in Apple Mac OS X before 10.5.4 allows user-assisted remote attackers to execute arbitrary code via a (1) .xht or (2) .xhtm file, which does not trigge…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2309
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299175
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Format string vulnerability in c++filt in Apple Mac OS X 10.5 before 10.5.4 allows user-assisted attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted str…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2008-2310
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299176
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Launch Services in Apple Mac OS X before 10.5, when Open Safe Files is enabled, allows remote attackers to execute arbitrary code via a symlink attack, probably related to a race condition and automa…
|
CWE-59
CWE-362
Link Following
Race Condition
|
CVE-2008-2311
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299177
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Network Preferences in Apple Mac OS X 10.4.11 stores PPP passwords in cleartext in a world-readable file, which allows local users to obtain sensitive information by reading this file.
|
CWE-255
Credentials Management
|
CVE-2008-2312
|
2017-08-8 10:30 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299178
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Mac OS X before 10.5 uses weak permissions for the User Template directory, which allows local users to gain privileges by inserting a Trojan horse file into this directory.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2313
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299179
|
- |
|
apple
|
xcode
xcode_tools
|
The WOHyperlink implementation in WebObjects in Apple Xcode tools before 3.1 appends local session IDs to generated non-local URLs, which allows remote attackers to obtain potentially sensitive infor…
|
CWE-200
Information Exposure
|
CVE-2008-2318
|
2017-08-8 10:30 |
2008-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299180
|
- |
|
apple
|
coregraphics
|
Unspecified vulnerability in CoreGraphics in Apple Mac OS X 10.4.11 and 10.5.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash)…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-2321
|
2017-08-8 10:30 |
2008-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
