|
303511
|
- |
|
wordpress
|
wordpress
|
SQL injection vulnerability in log.header.php in WordPress 0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the posts variable.
|
CWE-89
SQL Injection
|
CVE-2003-1598
|
2024-11-21 08:47 |
2014-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303512
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
TCP firewalls could be circumvented by sending a SYN Packets with other flags (like e.g. RST flag) set, which was not correctly discarded by the Linux TCP stack after firewalling.
|
-
|
CVE-2002-2438
|
2024-11-21 08:43 |
2021-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303513
|
9.8 |
CRITICAL
Network
|
snoopy_project
|
snoopy
|
Snoopy before 2.0.0 has a security hole in exec cURL
|
CWE-20
Improper Input Validation
|
CVE-2002-2444
|
2024-11-21 08:43 |
2019-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303514
|
7.8 |
HIGH
Local
|
gnu
|
gcc
|
Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2002-2439
|
2024-11-21 08:43 |
2019-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303515
|
- |
|
gehealthcare
|
millennium_mg_firmware
millennium_nc_firmware
millennium_myosight_firmware
|
GE Healthcare Millennium MG, NC, and MyoSIGHT has a password of insite.genieacq for the insite account that cannot be changed without disabling product functionality for remote InSite support, which …
|
CWE-255
Credentials Management
|
CVE-2002-2446
|
2024-11-21 08:43 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303516
|
- |
|
gehealthcare
|
millennium_myosight
millennium_nc
millennium_mg
|
GE Healthcare Millennium MG, NC, and MyoSIGHT has a default password of (1) root.genie for the root user, (2) "service." for the service user, (3) admin.genie for the admin user, (4) reboot for the r…
|
NVD-CWE-noinfo
|
CVE-2002-2445
|
2024-11-21 08:43 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303517
|
- |
|
mit
opensuse
fedoraproject
redhat
debian
canonical
|
kerberos_5
opensuse
fedora
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux_desktop
enterprise_linux_eus
debian_linux
ubunt…
|
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial o…
|
CWE-20
Improper Input Validation
|
CVE-2002-2443
|
2024-11-21 08:43 |
2013-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303518
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
The JavaScript implementation in Mozilla Firefox before 4.0, Thunderbird before 3.3, and SeaMonkey before 2.1 does not properly restrict the set of values contained in the object returned by the getC…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-2437
|
2024-11-21 08:43 |
2011-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303519
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
The Cascading Style Sheets (CSS) implementation in Mozilla Firefox before 4.0, Thunderbird before 3.3, and SeaMonkey before 2.1 does not properly handle the :visited pseudo-class, which allows remote…
|
CWE-200
Information Exposure
|
CVE-2002-2436
|
2024-11-21 08:43 |
2011-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303520
|
- |
|
microsoft
|
internet_explorer
ie
|
The Cascading Style Sheets (CSS) implementation in Microsoft Internet Explorer 8.0 and earlier does not properly handle the :visited pseudo-class, which allows remote attackers to obtain sensitive in…
|
CWE-200
Information Exposure
|
CVE-2002-2435
|
2024-11-21 08:43 |
2011-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
