|
272611
|
- |
|
tangocms
|
tangocms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in TangoCMS before 2.2.0 allow remote attackers to hijack the authentication of administrators.
|
CWE-352
Origin Validation Error
|
CVE-2008-6048
|
2023-11-7 11:03 |
2009-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272612
|
- |
|
gplhost
|
domain_technologie_control
|
SQL injection vulnerability in client/new_account.php in Domain Technologie Control (DTC) before 0.29.16 allows remote attackers to execute arbitrary SQL commands via the (1) familyname, (2) christna…
|
CWE-89
SQL Injection
|
CVE-2009-0402
|
2023-11-7 11:03 |
2009-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272613
|
- |
|
ffmpeg
debian
canonical
fedoraproject
|
ffmpeg
debian_linux
ubuntu_linux
fedora
|
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a…
|
NVD-CWE-Other
|
CVE-2009-0385
|
2023-11-7 11:03 |
2009-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272614
|
- |
|
linux
debian
canonical
|
linux_kernel
debian_linux
ubuntu_linux
|
drivers/firmware/dell_rbu.c in the Linux kernel before 2.6.27.13, and 2.6.28.x before 2.6.28.2, allows local users to cause a denial of service (system crash) via a read system call that specifies ze…
|
CWE-189
CWE-399
Numeric Errors
Resource Management Errors
|
CVE-2009-0322
|
2023-11-7 11:03 |
2009-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272615
|
- |
|
python
fedoraproject
canonical
|
python
fedora
ubuntu_linux
|
Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not c…
|
CWE-426
Untrusted Search Path
|
CVE-2008-5983
|
2023-11-7 11:03 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272616
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-2636. Reason: This candidate is a duplicate of CVE-2006-2636. Notes: All CVE users should reference CVE-2006-2636 instead of…
|
-
|
CVE-2009-0300
|
2023-11-7 11:03 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272617
|
- |
|
squirrelmail
|
squirrelmail
|
A certain Red Hat patch for SquirrelMail 1.4.8 sets the same SQMSESSID cookie value for all sessions, which allows remote authenticated users to access other users' folder lists and configuration dat…
|
CWE-287
Improper Authentication
|
CVE-2009-0030
|
2023-11-7 11:03 |
2009-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272618
|
- |
|
-
|
-
|
Rejected reason: gmetad in Ganglia 3.1.1, when supporting multiple requests per connection on an interactive port, allows remote attackers to cause a denial of service via a request to the gmetad ser…
|
-
|
CVE-2009-0242
|
2023-11-7 11:03 |
2009-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272619
|
- |
|
ganglia
|
ganglia
|
Stack-based buffer overflow in the process_path function in gmetad/server.c in Ganglia 3.1.1 allows remote attackers to cause a denial of service (crash) via a request to the gmetad service with a lo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0241
|
2023-11-7 11:03 |
2009-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272620
|
- |
|
linux
|
linux_kernel
|
Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0065
|
2023-11-7 11:03 |
2009-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
