|
307521
|
- |
|
dootzky
|
oblog
|
Cross-site scripting (XSS) vulnerability in index.php in oBlog allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is un…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4903
|
2024-11-21 10:10 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307522
|
- |
|
muscle
|
pcsc-lite
|
Buffer overflow in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite 1.5.4 and earlier might allow local users to gain privileges via…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4902
|
2024-11-21 10:10 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307523
|
- |
|
muscle
|
pcsc-lite
|
The MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 might allow local users to cause a denial of service (daemon crash) vi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4901
|
2024-11-21 10:10 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307524
|
- |
|
punbb
|
punbb
|
Multiple cross-site scripting (XSS) vulnerabilities in profile.php in PunBB before 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) password or (2) e-mail.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4894
|
2024-11-21 10:10 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307525
|
- |
|
unrealircd
|
unrealircd
|
Buffer overflow in UnrealIRCd 3.2beta11 through 3.2.8, when allow::options::noident is enabled, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via un…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4893
|
2024-11-21 10:10 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307526
|
6.5 |
MEDIUM
Network
|
apache
|
juddi
|
The console in Apache jUDDI 3.0.0 does not properly escape line feeds, which allows remote authenticated users to spoof log entries via the numRows parameter.
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2009-4267
|
2024-11-21 10:09 |
2018-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307527
|
- |
|
redhat
|
network_satellite_server
spacewalk-java
|
Cross-site request forgery (CSRF) vulnerability in the Spacewalk Java site packages (aka spacewalk-java) 1.2.39 in Spacewalk, as used in the server in Red Hat Network Satellite 5.3.0 through 5.4.1 an…
|
CWE-352
Origin Validation Error
|
CVE-2009-4139
|
2024-11-21 10:09 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307528
|
- |
|
apache
|
derby
|
The password hash generation algorithm in the BUILTIN authentication functionality for Apache Derby before 10.6.1.0 performs a transformation that reduces the size of the set of inputs to SHA-1, whic…
|
CWE-310
Cryptographic Issues
|
CVE-2009-4269
|
2024-11-21 10:09 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307529
|
7.5 |
HIGH
Network
|
jruby
|
jruby-openssl
|
The jruby-openssl gem before 0.6 for JRuby mishandles SSL certificate validation.
|
CWE-295
Improper Certificate Validation
|
CVE-2009-4123
|
2024-11-21 10:08 |
2023-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307530
|
7.8 |
HIGH
Local
|
gnome
ytnef_project
|
evolution
ytnef
|
Multiple directory traversal and buffer overflow vulnerabilities were discovered in yTNEF, and in Evolution's TNEF parser that is derived from yTNEF. A crafted email could cause these applications to…
|
-
|
CVE-2009-3721
|
2024-11-21 10:08 |
2021-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
