|
287981
|
- |
|
klinzmann
|
application_access_server
|
Multiple cross-site request forgery (CSRF) vulnerabilities in index.aas in Application Access Server (A-A-S) 2.0.48 allow remote attackers to hijack the authentication of administrators for requests …
|
CWE-352
Origin Validation Error
|
CVE-2009-1464
|
2018-10-11 04:36 |
2009-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287982
|
- |
|
klinzmann
|
application_access_server
|
Application Access Server (A-A-S) 2.0.48 has "wildbat" as its default password for the admin account, which makes it easier for remote attackers to obtain access.
|
CWE-255
Credentials Management
|
CVE-2009-1465
|
2018-10-11 04:36 |
2009-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287983
|
- |
|
icewarp
|
email_server
webmail_server
|
Multiple cross-site scripting (XSS) vulnerabilities in IceWarp eMail Server and WebMail Server before 9.4.2 allow remote attackers to inject arbitrary web script or HTML via (1) the body of a message…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1467
|
2018-10-11 04:36 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287984
|
- |
|
cisco
|
adaptive_security_appliance
|
Eval injection vulnerability in the csco_wrap_js function in /+CSCOL+/cte.js in WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 allows remote atta…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1201
|
2018-10-11 04:35 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287985
|
- |
|
cisco
|
adaptive_security_appliance
|
WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 allows remote attackers to bypass certain protection mechanisms involving URL rewriting and HTML r…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1202
|
2018-10-11 04:35 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287986
|
- |
|
cisco
|
adaptive_security_appliance
|
WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 does not properly distinguish its own login screen from the login screens it produces for third-pa…
|
NVD-CWE-Other
|
CVE-2009-1203
|
2018-10-11 04:35 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287987
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
Cross-site scripting (XSS) vulnerability in TikiWiki (Tiki) CMS/Groupware 2.2 allows remote attackers to inject arbitrary web script or HTML via the PHP_SELF portion of a URI to (1) tiki-galleries.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1204
|
2018-10-11 04:35 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287988
|
- |
|
wireshark
|
wireshark
|
Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers i…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2009-1210
|
2018-10-11 04:35 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287989
|
- |
|
precisionid
|
data_matrix_barcode_activex_control
|
Multiple insecure method vulnerabilities in PRECIS~2.DLL in the PrecisionID Datamatrix ActiveX control (DMATRIXLib.Datamatrix) allow remote attackers to overwrite arbitrary files via the (1) SaveBarC…
|
NVD-CWE-Other
|
CVE-2009-1212
|
2018-10-11 04:35 |
2009-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287990
|
- |
|
sun
|
java_system_calendar_server
one_calendar_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 through 6.3-7.01 allow remote attack…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1218
|
2018-10-11 04:35 |
2009-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
