|
306251
|
- |
|
cisco
|
asa_5580
|
Cross-site scripting (XSS) vulnerability in the WebVPN portal on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remote attackers to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4910
|
2024-11-21 10:10 |
2010-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306252
|
- |
|
dootzky
|
oblog
|
admin/index.php in oBlog allows remote attackers to conduct brute-force password guessing attacks via HTTP requests.
|
CWE-287
Improper Authentication
|
CVE-2009-4909
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306253
|
- |
|
dootzky
|
oblog
|
Multiple cross-site scripting (XSS) vulnerabilities in oBlog allow remote attackers to inject arbitrary web script or HTML via the (1) commentName, (2) commentEmail, (3) commentWeb, or (4) commentTex…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4908
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306254
|
- |
|
dootzky
|
oblog
|
Multiple cross-site request forgery (CSRF) vulnerabilities in oBlog allow remote attackers to hijack the authentication of administrators for requests that (1) change the admin password, (2) force an…
|
CWE-352
Origin Validation Error
|
CVE-2009-4907
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306255
|
- |
|
accscripts
|
acc_php_email
|
Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords.
|
CWE-352
Origin Validation Error
|
CVE-2009-4906
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306256
|
- |
|
accscripts
|
acc_statistics
|
Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwo…
|
CWE-352
Origin Validation Error
|
CVE-2009-4905
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306257
|
- |
|
dootzky
|
oblog
|
article.php in oBlog does not properly restrict comments, which allows remote attackers to cause a denial of service (blog spam) via a comment=new action.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4904
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306258
|
- |
|
dootzky
|
oblog
|
Cross-site scripting (XSS) vulnerability in index.php in oBlog allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is un…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4903
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306259
|
- |
|
muscle
|
pcsc-lite
|
Buffer overflow in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite 1.5.4 and earlier might allow local users to gain privileges via…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4902
|
2024-11-21 10:10 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306260
|
- |
|
muscle
|
pcsc-lite
|
The MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 might allow local users to cause a denial of service (daemon crash) vi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4901
|
2024-11-21 10:10 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
