Software Vulnerability
Main
Software Alerts
Software and Script Bug ExploitsSoftware Vulnerability
Random Feeds
Archives
| Jan 2012 | Dec 2011 | Nov 2011 | Oct 2011 | Sep 2011 | Aug 2011 | Jul 2011 | Jun 2011 | May 2011 | Apr 2011 | Mar 2011 | Feb 2011 | Jan 2011 | Dec 2010 | Nov 2010 | Oct 2010 | Sep 2010 | Aug 2010 | Jul 2010 | Jun 2010 | May 2010 | Apr 2010 | Mar 2010 | Feb 2010 | Jan 2010 | Dec 2009 | Nov 2009 | Oct 2009 | Sep 2009 | Aug 2009 | Jul 2009 | Jun 2009 | May 2009 | Apr 2009 | Mar 2009 | Feb 2009 | Jan 2009 | Dec 2008 | Nov 2008 | Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |Sat, 28 Feb 09
butterfly_organizer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6328
SQL injection vulnerability in view.php in Butterfly Organizer 2.0.0 and 2.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Sat, 28 Feb 09
proquiz
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6327
SQL injection vulnerability in index.php in ProQuiz 1.0 allows remote attackers to execute arbitrary SQL commands via the password parameter, a different vector than CVE-2008-6312.
Sat, 28 Feb 09
simple_customer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6326
SQL injection vulnerability in login.php in Simple Customer as downloaded on 20081118 allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 28 Feb 09
classifieds_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6325
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Classifieds Script allow remote attackers to inject arbitrary web script or HTML via the (1) radio parameter to showcategory.php, (2) msg parameter to advertisers/signinform.php, (3) radio parameter to gallery.php, (4) msg parameter to lostpassword.php, (5) radio parameter to showcategory.php, (6) msg parameter to admin/adminhome.php, and (7) msg parameter to admin/index.php. NOTE: a different signinform.php file is already cover...
Sat, 28 Feb 09
cf_forum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6324
SQL injection vulnerability in forummessages.cfm in CF_Forum allows remote attackers to execute arbitrary SQL commands via the categorynbr parameter.
Sat, 28 Feb 09
cf_auction
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6323
SQL injection vulnerability in forummessages.cfm in CFMSource CF_Auction allows remote attackers to execute arbitrary SQL commands via the categorynbr parameter.
Sat, 28 Feb 09
cfmblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6322
SQL injection vulnerability in index.cfm in CFMSource CFMBlog allows remote attackers to execute arbitrary SQL commands via the categorynbr parameter.
Sat, 28 Feb 09
cf_shopkart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6321
CF Shopkart 5.2.2 stores cfshopkart52.mdb under the web root with insufficient access control, which allows remote attackers to obtain sensitive information, such as usernames and passwords, via a direct request.
Sat, 28 Feb 09
cf_shopkart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6320
SQL injection vulnerability in index.cfm in CF Shopkart 5.2.2 allows remote attackers to execute arbitrary SQL commands via the Category parameter in a ViewCategory action.
Sat, 28 Feb 09
cf_calendar
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6319
SQL injection vulnerability in calendarevent.cfm in CF_Calendar allows remote attackers to execute arbitrary SQL commands via the calid parameter.
Sat, 28 Feb 09
phpmygallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6318
PHP remote file inclusion vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote attackers to execute arbitrary PHP code via a URL in the admindir parameter, a different vector than CVE-2008-6317.
Sat, 28 Feb 09
phpmygallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6317
Directory traversal vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf[lang] parameter, a different issue than CVE-2008-6318. NOTE: this might be the same issue as CVE-2008-6316.
Sat, 28 Feb 09
phpmygallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6316
Directory traversal vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter, a different issue than CVE-2008-6316 and a different vector than CVE-2008-6318.
Sat, 28 Feb 09
phpmygallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6315
PHP remote file inclusion vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to execute arbitrary PHP code via a URL in the confdir parameter, a different issue than CVE-2008-6316.
Sat, 28 Feb 09
CVE-2008-6314
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6314
SQL injection vulnerability in tag_board.php in the Tag Board module 4.0 and earlier for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter in a delete action.
Sat, 28 Feb 09
phpaddedit
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6313
Directory traversal vulnerability in addedit-render.php in phpAddEdit 1.3, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a URL in the editform parameter. NOTE: PHP remote file inclusion attacks are also likely.
Sat, 28 Feb 09
proquiz
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6312
SQL injection vulnerability in index.php in ProQuiz 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.
Sat, 28 Feb 09
butterfly_organizer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6311
SQL injection vulnerability in view.php in Butterfly Organizer 2.0.1 allows remote attackers to execute arbitrary SQL commands via the mytable parameter. NOTE: the id vector is covered by another CVE name.
Sat, 28 Feb 09
revsense
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6310
SQL injection vulnerability in index.php in W3matter RevSense 1.0 allows remote attackers to execute arbitrary SQL commands via the f[password] parameter. NOTE: some of these details are obtained from third party information.
Sat, 28 Feb 09
askpert
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6309
SQL injection vulnerability in index.php in W3matter AskPert allows remote attackers to execute arbitrary SQL commands via the f[password] parameter. NOTE: some of these details are obtained from third party information.
Sat, 28 Feb 09
private_messaging_system
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6308
Multiple directory traversal vulnerabilities in Private Messaging System (PMS) 1.2.3 and earlier for PunBB allow remote attackers to include and execute arbitrary files via a .. (dot dot) in the pun_user[language] parameter to (1) functions_navlinks.php, (2) header_new_messages.php, (3) profile_send.php, and (4) viewtopic_PM-link.php in include/pms/.
Sat, 28 Feb 09
virtual_rooms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0208
Unspecified vulnerability in HP Virtual Rooms Client before 7.0.1, when running on Windows, allows remote attackers to execute arbitrary code via unknown vectors.
Sat, 28 Feb 09
link_back_checker
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6307
E-topbiz Link Back Checker 1 allows remote attackers to bypass authentication and gain administrative access by setting the auth cookie to "admin."
Sat, 28 Feb 09
classifieds_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6306
Cross-site scripting (XSS) vulnerability in signinform.php in Softbiz Classifieds Script allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 28 Feb 09
free_directory_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6305
PHP remote file inclusion vulnerability in init.php in Free Directory Script 1.1.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the API_HOME_DIR parameter.
Sat, 28 Feb 09
xt-commerce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6304
SQL injection vulnerability in xt:Commerce before 3.0.4 Sp2.1, when magic_quotes_gpc is enabled and the SEO URLs are activated, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Sat, 28 Feb 09
tours_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6303
SQL injection vulnerability in tourview.php in ToursManager allows remote attackers to execute arbitrary SQL commands via the tourid parameter.
Sat, 28 Feb 09
local_classifieds
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6302
TurnkeyForms Local Classifieds allows remote attackers to bypass authentication and gain administrative access via a direct request to Site_Admin/admin.php.
Sat, 28 Feb 09
tomcat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4308
The doRead method in Apache Tomcat 4.1.32 through 4.1.34 and 5.5.10 through 5.5.20 does not return a -1 to indicate when a certain error condition has occurred, which can cause Tomcat to send POST content from one request to a different request.
Sat, 28 Feb 09
application_control_engine_module, ace_4710
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0742
The username command in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers and Cisco ACE 4710 Application Control Engine Appliance stores a cleartext password by default, which allows context-dependent attackers to obtain sensitive information.
Sat, 28 Feb 09
ace_4710, application_control_engine_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0625
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8.0) allows remote attackers to cause a denial of service (device reload) via a crafted SNMPv3 packet.
Sat, 28 Feb 09
application_control_engine_module, ace_4710
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0624
Unspecified vulnerability in the SNMPv2c implementation in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3) and Cisco ACE 4710 Application Control Engine Appliance before A3(2.1) allows remote attackers to cause a denial of service (device reload) via a crafted SNMPv1 packet.
Sat, 28 Feb 09
ace_4710, application_control_engine_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0623
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3) and Cisco ACE 4710 Application Control Engine Appliance before A3(2.1) allows remote attackers to cause a denial of service (device reload) via a crafted SSH packet.
Sat, 28 Feb 09
application_control_engine_module, ace_4710
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0622
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8a) allows remote authenticated users to execute arbitrary operating-system commands through a command line interface (CLI).
Sat, 28 Feb 09
ace_4710
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0621
Cisco ACE 4710 Application Control Engine Appliance before A1(8a) uses default (1) usernames and (2) passwords for (a) the administrator, (b) web management, and (c) device management, which makes it easier for remote attackers to perform configuration changes to the Device Manager and other components, or obtain operating-system access.
Sat, 28 Feb 09
application_control_engine_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0620
Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames and (2) passwords for (a) the administrator and (b) web management, which makes it easier for remote attackers to perform configuration changes or obtain operating-system access.
Sat, 28 Feb 09
application_networking_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0618
Unspecified vulnerability in the Java agent in Cisco Application Networking Manager (ANM) before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service (service outage) by stopping processes, or obtain sensitive information by reading configuration files.
Sat, 28 Feb 09
application_networking_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0617
Cisco Application Networking Manager (ANM) before 2.0 uses a default MySQL root password, which makes it easier for remote attackers to execute arbitrary operating-system commands or change system files.
Sat, 28 Feb 09
application_networking_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0616
Cisco Application Networking Manager (ANM) before 2.0 uses default usernames and passwords, which makes it easier for remote attackers to access the application, or cause a denial of service via configuration changes, related to "default user credentials during installation."
Sat, 28 Feb 09
application_control_engine_device_manager, application_networking_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0615
Directory traversal vulnerability in Cisco Application Networking Manager (ANM) before 2.0 and Application Control Engine (ACE) Device Manager before A3(2.1) allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to "invalid directory permissions."
Sat, 28 Feb 09
meetingplace_web_confrencing
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0614
Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote attackers to bypass authentication and obtain administrative access via a crafted URL.
Sat, 28 Feb 09
robohelp, robohelp_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0524
Cross-site scripting (XSS) vulnerability in Adobe RoboHelp 6 and 7, and RoboHelp Server 6 and 7, allows remote attackers to inject arbitrary web script or HTML via vectors involving files produced by RoboHelp.
Sat, 28 Feb 09
robohelp, robohelp_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0523
Cross-site scripting (XSS) vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, which is not properly handled when displaying the Help Errors log.
Sat, 28 Feb 09
air, flash_player, flash_player_for_linux, flex
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0522
Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 on Windows allows remote attackers to trick a user into visiting an arbitrary URL via an unspecified manipulation of the "mouse pointer display," related to a "Clickjacking attack."
Sat, 28 Feb 09
flash_player_for_linux
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0521
Untrusted search path vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 on Linux allows local users to obtain sensitive information or gain privileges via a crafted library in a directory contained in the RPATH.
Sat, 28 Feb 09
air, flash_player, flash_player_for_linux, flex
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0520
Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 does not properly remove references to destroyed objects during Shockwave Flash file processing, which allows remote attackers to execute arbitrary code via a crafted file, related to a "buffer overflow issue."
Sat, 28 Feb 09
air, flash_player, flash_player_for_linux, flex
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0519
Unspecified vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a crafted Shockwave Flash (aka .swf) file.
Fri, 27 Feb 09
websphere_process_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0507
IBM WebSphere Process Server (WPS) 6.1.2 before 6.1.2.3 and 6.2 before 6.2.1.0 does not properly restrict configuration data during an export of the cluster configuration file from the administrative console, which allows remote authenticated users to obtain (1) JMSAPI information and (2) mail session information via vectors involving access to a cluster member.
Fri, 27 Feb 09
orbit_downloader
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0187
Stack-based buffer overflow in Orbit Downloader 2.8.2 and 2.8.3, and possibly other versions before 2.8.5, allows remote attackers to execute arbitrary code via a crafted HTTP URL with a long host name, which is not properly handled when constructing a "Connecting" log message.
Fri, 27 Feb 09
flash
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0114
Unspecified vulnerability in the Settings Manager in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87, and possibly other versions, allows remote attackers to trick a user into visiting an arbitrary URL via unknown vectors, related to "a potential Clickjacking issue variant."
Fri, 27 Feb 09
small_shoutbox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6301
SQL injection vulnerability in shoutbox_view.php in the Small ShoutBox module 1.4 for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter in a delete action.
Fri, 27 Feb 09
galatolo_webmanager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6300
Galatolo WebManager 1.3a allows remote attackers to bypass authentication and gain administrative access by setting the (1) gwm_user and (2) gwm_pass cookies to admin. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 27 Feb 09
joomla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6299
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5.7 and earlier allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) the title and description parameters to the com_weblinks module and (2) unspecified vectors in the com_content module related to "article submission."
Fri, 27 Feb 09
sisapilocation
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6298
Unspecified vulnerability in sISAPILocation before 1.0.2.2 allows remote attackers to bypass intended access restrictions for character encoding and the cookie secure flag via unknown vectors related to the "HTTP header rewrite function."
Fri, 27 Feb 09
dhcart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6297
Cross-site scripting (XSS) vulnerability in order.php in DHCart allows remote attackers to inject arbitrary web script or HTML via the (1) domain and (2) d1 parameters.
Fri, 27 Feb 09
php_shop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6296
admin.php in Maran PHP Shop allows remote attackers to bypass authentication and gain administrative access by setting the user cookie to "demo."
Fri, 27 Feb 09
camera_life
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6295
Multiple cross-site scripting (XSS) vulnerabilities in Camera Life 2.6.2b8 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.php and (2) rss.php; the query string after the image name in (3) photos/photo; the path parameter to (4) folder.php; page parameter and REQUEST_URI to (5) login.php; ver parameter to (6) media.php; theme parameter to (7) modules/iconset/iconset-debug.php; and the REQUEST_URI to (8) index.php.
Fri, 27 Feb 09
acc_statistics
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6294
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie cookie to "admin."
Fri, 27 Feb 09
acc_real_estate
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6293
admin/Index.php in Acc Real Estate 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the username_cookie to "admin."
Fri, 27 Feb 09
acc_autos
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6292
Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the (1) username_cookie to "admin," (2) right_cookie to "1," and (3) id_cookie to "1."
Fri, 27 Feb 09
acc_php_email
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6291
Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin".
Fri, 27 Feb 09
include_sito
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6290
Directory traversal vulnerability in includefile.php in nicLOR Sito, when register_globals is enabled or magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the page_file parameter.
Fri, 27 Feb 09
tours_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6289
SQL injection vulnerability in cityview.php in Tours Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the cityid parameter.
Fri, 27 Feb 09
ksquirrel-libs
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5263
Multiple stack-based buffer overflows in the mt_codec::getHdrHead function in kernel/kls_hdr/fmt_codec_hdr.cpp in ksquirrel-libs 0.8.0 allow context-dependent attackers to execute arbitrary code via a crafted Radiance RGBE image (aka .hdr file).
Fri, 27 Feb 09
ibase
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6288
Directory traversal vulnerability in download.php in Interface Medien ibase 2.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
Fri, 27 Feb 09
broadcast_machine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6287
Multiple PHP remote file inclusion vulnerabilities in Broadcast Machine 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to (1) MySQLController.php, (2) SQLController.php, (3) SetupController.php, (4) VideoController.php, and (5) ViewController.php in controllers/.
Fri, 27 Feb 09
active_newsletter
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6286
Multiple SQL injection vulnerabilities in SubscriberStart.asp in Active Newsletter 4.3 allow remote attackers to execute arbitrary SQL commands via (1) the email parameter (aka username or E-mail field), or (2) the password parameter (aka password field), to (a) Subscriber.asp or (b) start.asp. NOTE: some of these details are obtained from third party information.
Fri, 27 Feb 09
php_tv_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6285
SQL injection vulnerability in index.php in PHP TV Portal 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the mid parameter.
Fri, 27 Feb 09
z1exchange
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6284
SQL injection vulnerability in edit.php in Z1Exchange 1.0 allows remote attackers to execute arbitrary SQL commands via the site parameter.
Fri, 27 Feb 09
subtext
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6283
Cross-site scripting (XSS) vulnerability in Subtext 2.0 allows remote attackers to inject arbitrary web script or HTML via a comment, related to "the feature which converts URLs to anchor tags."
Fri, 27 Feb 09
cms_ortus
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6282
SQL injection vulnerability in engine/users/users_edit_pub.inc in CMS Ortus 1.13 and earlier allows remote authenticated users to execute arbitrary SQL commands via the city parameter in a users_edit_pub action to index.php.
Fri, 27 Feb 09
bluo_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6281
SQL injection vulnerability in index.php in Bluo CMS 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Fri, 27 Feb 09
wrt160n
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6280
Cross-site scripting (XSS) vulnerability in apply.cgi on the Linksys WRT160N allows remote attackers to inject arbitrary web script or HTML via the action parameter in a DHCP_Static operation.
Fri, 27 Feb 09
rakhisoftware_shopping_cart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6279
RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message.
Fri, 27 Feb 09
rakhisoftware_shopping_cart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6278
Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote attackers to inject arbitrary web script or HTML via the (1) category_id and (2) subcategory_id parameters.
Fri, 27 Feb 09
rakhisoftware_shopping_cart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6277
SQL injection vulnerability in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to execute arbitrary SQL commands via the subcategory_id parameter.
Fri, 27 Feb 09
user_karma_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6276
Multiple SQL injection vulnerabilities in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allow remote authenticated administrators to execute arbitrary SQL commands via (1) a content type or (2) a voting API value.
Fri, 27 Feb 09
user_karma_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6275
Cross-site scripting (XSS) vulnerability in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified messages.
Fri, 27 Feb 09
familyproject
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6274
Multiple SQL injection vulnerabilities in index.php in FamilyProject 2.0 allow remote attackers to execute arbitrary SQL commands via (1) the logmbr parameter (aka login field) or (2) the mdpmbr parameter (aka pass or "Mot de passe" field). NOTE: some of these details are obtained from third party information.
Thu, 26 Feb 09
CVE-2009-0741 (banking@home)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0741
SQL injection vulnerability in Login.asp in Craft Silicon Banking@Home 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the LoginName parameter.
Thu, 26 Feb 09
bluebird
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0740
SQL injection vulnerability in login.php in BlueBird Prelease allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
Thu, 26 Feb 09
mynews
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0739
SQL injection vulnerability in login.php in MyNews 0.10 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
Thu, 26 Feb 09
auth_php
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0738
SQL injection vulnerability in login.php in Auth Php 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
Thu, 26 Feb 09
mediawiki
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0737
Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php) in MediaWiki 1.6 before 1.6.12, 1.12 before 1.12.4, and 1.13 before 1.13.4, when the installer is in active use, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Thu, 26 Feb 09
pebble
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0736
Cross-site scripting (XSS) vulnerability in Pebble before 2.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Thu, 26 Feb 09
papoo
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0735
Directory traversal vulnerability in lib/classes/message_class.php in Papoo CMS 3.6, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to read and possibly execute arbitrary files via a .. (dot dot) in the pfadhier parameter. NOTE: some of these details are obtained from third party information.
Thu, 26 Feb 09
nokia_pc_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0734
Heap-based buffer overflow in MultimediaPlayer.exe 6.86.240.7 in Nokia PC Suite 6.86.9.3 allows remote attackers to execute arbitrary code via a long string in a .m3u playlist file.
Thu, 26 Feb 09
magento
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0541
Multiple cross-site scripting (XSS) vulnerabilities in Magento 1.2.0 and 1.2.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) the username field in an admin/ request to index.php, possibly related to the login[username] parameter and the app/code/core/Mage/Admin/Model/Session.php login function; (2) the email address field in an admin/index/forgotpassword/ request to index.php, possibly related to the email parameter and the app/code/core/Mage/Adminhtml/controllers/In...
Thu, 26 Feb 09
libero
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0540
Cross-site scripting (XSS) vulnerability in Libero 5.3 SP5, and possibly other versions before 5.5 SP1, allows remote attackers to inject arbitrary web script or HTML via the search term field.
Thu, 26 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0506
Unspecified vulnerability in IBM WebSphere Application Server (WAS) 5.1 and 6.0.2 before 6.0.2.33 on z/OS, when CSIv2 Identity Assertion is enabled and Enterprise JavaBeans (EJB) interaction occurs between a WAS 6.1 instance and a WAS pre-6.1 instance, allows local users to have an unknown impact via vectors related to (1) use of the wrong subject and (2) multiple CBIND checks.
Thu, 26 Feb 09
txseries
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0505
The CICS listener in IBM TXSeries for Multiplatforms 6.2 GA waits for a forcepurge acknowledgement from the CICS Application Server (CICSAS) after an eci response timeout, which might allow remote authenticated users to cause a denial of service (forcepurge handling delay), or have unspecified other impact, via vectors involving slow or nonexistent acknowledgement.
Thu, 26 Feb 09
CVE-2009-0238 (excel, excel_viewer, office, office_compatibility_pack, office_excel, office_exce...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0238
Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1; and Excel in Microsoft Office 2004 and 2008 for Mac allow remote attackers to execute arbitrary code via a crafted Excel document that triggers an access attempt on an invalid object, as exploited in the wild in February 2009 by Trojan.Mdropper.AC.
Thu, 26 Feb 09
myktools
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6273
Directory traversal vulnerability in configuration_script.php in MyKtools 3.0 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the langage parameter, a different vulnerability than CVE-2008-4781. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Thu, 26 Feb 09
apoll
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6272
SQL injection vulnerability in admin/index.php in Dragan Mitic Apoll 0.7 beta and 0.7.5 allows remote attackers to execute arbitrary SQL command via the pass parameter.
Thu, 26 Feb 09
tbmnetcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6271
Directory traversal vulnerability in index.php in TBmnetCMS 1.0, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the content parameter.
Thu, 26 Feb 09
apoll
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6270
SQL injection vulnerability in admin/index.php in Dragan Mitic Apoll 0.7 beta and 0.7.5 allows remote attackers to execute arbitrary SQL command via the user parameter.
Thu, 26 Feb 09
joovili
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6269
Joovili 3.1.4 allows remote attackers to bypass authentication and gain privileges as other users, including the administrator, by setting the (1) session_id, session_logged_in, and session_username cookies for user privileges; (2) session_admin_id, session_admin_username, and session_admin cookies for admin privileges; and (3) session_staff_id, session_staff_username, and session_staff cookies for staff users.
Thu, 26 Feb 09
multi_languages_webshop_online
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6268
SQL injection vulnerability in detail.php in Multi Languages WebShop Online 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Thu, 26 Feb 09
multi_languages_webshop_online
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6267
Cross-site scripting (XSS) vulnerability in detail.php in Multi Languages WebShop Online 1.02 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
Thu, 26 Feb 09
phpwebsite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6266
SQL injection vulnerability in links.php in Appalachian State University phpWebSite allows remote attackers to execute arbitrary SQL commands via the cid parameter in a viewlink action.
Thu, 26 Feb 09
downloadcenter
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0732
Downloadcenter 2.1 stores common.h under the web root with insufficient access control, which allows remote attackers to obtain user credentials and other sensitive information via a direct request. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Thu, 26 Feb 09
free_arcade_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0731
Directory traversal vulnerability in pages/play.php in Free Arcade Script 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.
Thu, 26 Feb 09
gigcalendar_component
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0730
Multiple SQL injection vulnerabilities in the GigCalendar (com_gigcal) component 1.0 for Mambo and Joomla!, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the gigcal _venues_id parameter in a details action to index.php, which is not properly handled by venuedetails.php, and (2) the gigcal_bands_id parameter in a details action to index.php, which is not properly handled by banddetails.php, different vectors than CVE-2009-0726.
Thu, 26 Feb 09
page_engine_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0729
Multiple directory traversal vulnerabilities in Page Engine CMS 2.0 Basic and Pro allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the fPrefix parameter to (1) modules/recent_poll_include.php, (2) modules/login_include.php, and (3) modules/statistics_include.php and (4) configuration.inc.php in includes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Thu, 26 Feb 09
my_egallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0728
SQL injection vulnerability in the My_eGallery module for MAXdev MDPro (MD-Pro) and Postnuke allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php.
Thu, 26 Feb 09
taifajobs
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0727
SQL injection vulnerability in jobdetails.php in taifajobs 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the jobid parameter.
Thu, 26 Feb 09
gigcalendar_component
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0726
SQL injection vulnerability in the GigCalendar (com_gigcal) component 1.0 for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the gigcal_gigs_id parameter in a details action to index.php.
Wed, 25 Feb 09
potato_news
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0722
Directory traversal vulnerability in admin.php in Potato News 1.0.0 allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the user cookie parameter.
Wed, 25 Feb 09
cyberfolio
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6265
Directory traversal vulnerability in portfolio/css.php in Cyberfolio 7.12.2 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Wed, 25 Feb 09
slide_popups
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6264
SQL injection vulnerability in admin/admin.php in E-topbiz Slide Popups 1.0 allows remote attackers to execute arbitrary SQL commands via the password parameter.
Wed, 25 Feb 09
saturncms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6263
SQL injection vulnerability in lib/user/t_user.php in SaturnCMS allows remote attackers to execute arbitrary SQL commands via the username parameter to the _userLoggedIn function. NOTE: some of these details are obtained from third party information.
Wed, 25 Feb 09
saturncms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6262
SQL injection vulnerability in lib/url/meta_url.php in SaturnCMS allows remote attackers to execute arbitrary SQL commands via the URL to the translate function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 25 Feb 09
admanager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6261
SQL injection vulnerability in view.php in E-topbiz AdManager 4 allows remote attackers to execute arbitrary SQL commands via the group parameter.
Wed, 25 Feb 09
ultrastats
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6260
SQL injection vulnerability in index.php in Ultrastats 0.2.144 and 0.3.11 allows remote attackers to execute arbitrary SQL commands via the serverid parameter.
Wed, 25 Feb 09
q-shop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6259
Cross-site scripting (XSS) vulnerability in search.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the srkeys parameter.
Wed, 25 Feb 09
q-shop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6258
SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the (1) UserID and (2) Pwd parameters. NOTE: this might be related to CVE-2004-2108.
Wed, 25 Feb 09
openasp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6257
SQL injection vulnerability in default.asp in Openasp 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idpage parameter in the pages module.
Wed, 25 Feb 09
vbulletin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6256
SQL injection vulnerability in admincp/admincalendar.php in vBulletin 3.7.3.pl1 allows remote authenticated administrators to execute arbitrary SQL commands via the holidayinfo[recurring] parameter, a different vector than CVE-2005-3022.
Wed, 25 Feb 09
vbulletin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6255
Multiple SQL injection vulnerabilities in vBulletin 3.7.4 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) answer parameter to admincp/verify.php, (2) extension parameter in an edit action to admincp/attachmentpermission.php, and the (3) iperm parameter to admincp/image.php.
Wed, 25 Feb 09
jadu_galaxies
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6254
SQL injection vulnerability in scripts/documents.php in Jadu Galaxies allows remote attackers to execute arbitrary SQL commands via the categoryID parameter.
Wed, 25 Feb 09
pluck
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6253
Directory traversal vulnerability in data/inc/lib/pcltar.lib.php in Pluck 4.5.3, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the g_pcltar_lib_dir parameter.
Wed, 25 Feb 09
smcfancontrol
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6252
Stack-based buffer overflow in the smc program in smcFanControl 2.1.2 allows local users to execute arbitrary code and gain privileges via a long -k option.
Wed, 25 Feb 09
phpfan
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6251
PHP remote file inclusion vulnerability in includes/init.php in phpFan 3.3.4 allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter.
Wed, 25 Feb 09
websphere_mq
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0439
Unspecified vulnerability in the queue manager in IBM WebSphere MQ (WMQ) 5.3, 6.0 before 6.0.2.6, and 7.0 before 7.0.0.2 allows local users to gain privileges via vectors related to the (1) setmqaut, (2) dmpmqaut, and (3) dspmqaut authorization commands.
Wed, 25 Feb 09
mercury_quality_center, testdirector
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-5289
HP Mercury Quality Center (QC) 9.2 and earlier, and possibly TestDirector, relies on cached client-side scripts to implement "workflow" and decisions about the "capability" of a user, which allows remote attackers to execute arbitrary code via crafted use of the Open Test Architecture (OTA) API, as demonstrated by modifying (1) common.tds, (2) defects.tds, (3) manrun.tds, (4) req.tds, (5) testlab.tds, or (6) testplan.tds in %tmp%\TD_80, and then setting the file's properties to read-only.
Wed, 25 Feb 09
comdev_web_blogger
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6250
SQL injection vulnerability in Comdev Web Blogger 4.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the arcmonth parameter to a blog page.
Wed, 25 Feb 09
galatolo_webmanager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6249
SQL injection vulnerability in plugins/users/index.php in Galatolo WebManager 1.3a and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 25 Feb 09
galatolo_webmanager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6248
Cross-site scripting (XSS) vulnerability in all.php in Galatolo WebManager 1.3a and earlier allows remote attackers to inject arbitrary web script or HTML via the tag parameter.
Wed, 25 Feb 09
ez_top_sites
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6247
SQL injection vulnerability in topsite.php in Scripts For Sites (SFS) EZ Top Sites allows remote attackers to execute arbitrary SQL commands via the ts parameter.
Wed, 25 Feb 09
ez_webring
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6246
SQL injection vulnerability in category.php in Scripts For Sites (SFS) EZ Webring allows remote attackers to execute arbitrary SQL commands via the cat parameter.
Wed, 25 Feb 09
ez_biz_pro
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6245
SQL injection vulnerability in track.php in Scripts For Sites (SFS) EZ BIZ PRO allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 25 Feb 09
ez_gaming_cheats
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6244
SQL injection vulnerability in view_reviews.php in Scripts for Sites (SFS) EZ Gaming Cheats allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 25 Feb 09
ez_hotscripts-likesite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6243
SQL injection vulnerability in showcategory.php in Scripts For Sites (SFS) Hotscripts-like Site allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Wed, 25 Feb 09
ez_e-store
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6242
SQL injection vulnerability in SearchResults.php in Scripts For Sites (SFS) EZ e-store allows remote attackers to execute arbitrary SQL commands via the where parameter.
Wed, 25 Feb 09
phpfootball
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0711
filter.php in PHPFootball 1.6 and earlier allows remote attackers to retrieve password hashes via a request with an Accounts value for the dbtable parameter, in conjunction with a Password value for the dbfield parameter. NOTE: this has been reported as a SQL injection vulnerability by some sources, but the provenance of that information is unknown.
Wed, 25 Feb 09
phpfootball
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0710
Multiple cross-site scripting (XSS) vulnerabilities in PHPFootball 1.6 allow remote attackers to inject arbitrary web script or HTML via (1) the user parameter to login.php or (2) the dbfield parameter to filter.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 25 Feb 09
phpfootball
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0709
SQL injection vulnerability in login.php in PHPFootball 1.6 allows remote attackers to execute arbitrary SQL commands via the user parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 25 Feb 09
semanticscuttle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0708
Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow remote attackers to perform (1) unspecified actions as administrators via unknown vectors or (2) unspecified actions as arbitrary users via vectors involving the profile page.
Wed, 25 Feb 09
powerclan
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0707
SQL injection vulnerability in admin/index.php in PowerClan 1.14a allows remote attackers to execute arbitrary SQL commands via the loginemail parameter (aka login field). NOTE: some of these details are obtained from third party information.
Wed, 25 Feb 09
simple_review_component
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0706
SQL injection vulnerability in the Simple Review (com_simple_review) component 1.3.5 for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the category parameter to index.php.
Wed, 25 Feb 09
powernews
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0705
SQL injection vulnerability in news.php in PowerScripts PowerNews 2.5.4, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the newsid parameter.
Wed, 25 Feb 09
wsn_guest
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0704
SQL injection vulnerability in search.php in WSN Guest 1.23 allows remote attackers to execute arbitrary SQL commands via the search parameter in an advanced action.
Wed, 25 Feb 09
CVE-2009-0703 (aspthai.net_webboard)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0703
SQL injection vulnerability in bview.asp in ASPThai.Net Webboard 6.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 25 Feb 09
phoca_documentation
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0702
SQL injection vulnerability in the Phoca Documentation (com_phocadocumentation) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a section action to index.php.
Wed, 25 Feb 09
cybershadecms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0701
Multiple PHP remote file inclusion vulnerabilities in index.php in Cybershade CMS 0.2b, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) THEME_header and (2) THEME_footer parameters.
Wed, 25 Feb 09
business_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0700
Plunet BusinessManager 4.1 and earlier allows remote authenticated users to bypass access restrictions and (1) read sensitive Customer or Order data via a modified Pfad parameter to pagesUTF8/Sys_DirAnzeige.jsp, or (2) list sensitive Jobs via a direct request to pagesUTF8/auftrag_job.jsp.
Wed, 25 Feb 09
business_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0699
Cross-site scripting (XSS) vulnerability in pagesUTF8/auftrag_allgemeinauftrag.jsp in Plunet BusinessManager 4.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the (1) QUB and (2) Bez74 parameters.
Wed, 25 Feb 09
xine-lib
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0698
Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib 1.1.16.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a 4X movie file with a large current_track value, a similar issue to CVE-2009-0385.
Wed, 25 Feb 09
flexphpsite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6241
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPSite 0.0.1 and 0.0.7, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the checkuser parameter (aka username field), or (2) the checkpass parameter (aka password field), to admin/index.php.
Wed, 25 Feb 09
openedit_digital_asset_management
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6240
Cross-site scripting (XSS) vulnerability in data/views/index.html in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to inject arbitrary web script or HTML via the catalogid parameter.
Wed, 25 Feb 09
openedit_digital_asset_management
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6239
Cross-site request forgery (CSRF) vulnerability in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to perform unspecified actions as arbitrary users via unknown vectors.
Wed, 25 Feb 09
CVE-2008-6238
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6238
Cross-site scripting (XSS) vulnerability in archive/savedqueries/savequeryfinish.html in OpenEdit Digital Asset Management (DAM) before 5.2014 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
Wed, 25 Feb 09
hotscripts-like_site
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6237
SQL injection vulnerability in software-description.php in Scripts For Sites (SFS) Hotscripts-like Site allows remote attackers to execute arbitrary SQL commands via the id parameter.
Tue, 24 Feb 09
ssl312
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0680
cgi-bin/welcome/VPN_only in the web interface in Netgear SSL312 allows remote attackers to cause a denial of service (device crash) via a crafted query string, as demonstrated using directory traversal sequences.
Tue, 24 Feb 09
ravennuke
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0679
Cross-site scripting (XSS) vulnerability in the Your Account module in RavenNuke 2.30 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Tue, 24 Feb 09
ravennuke
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0678
images/captcha.php in RavenNuke 2.30 allows remote attackers to obtain sensitive information via an aFonts array parameter value that does not correspond to a valid font file, which reveals the installation path in an error message.
Tue, 24 Feb 09
ravennuke
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0677
avatarlist.php in the Your Account module, reached through modules.php, in Raven Web Services RavenNuke 2.30 allows remote authenticated users to execute arbitrary code via PHP sequences in an element of the replacements array, which is processed by the preg_replace function with the eval switch, as specified in an element of the patterns array.
Tue, 24 Feb 09
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0676
The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.
Tue, 24 Feb 09
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0675
The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFP_CLR_STATS requests only when the CAP_NET_ADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic" issue.
Tue, 24 Feb 09
ravennuke
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0674
images/captcha.php in Raven Web Services RavenNuke 2.30, when register_globals and display_errors are enabled, allows remote attackers to determine the existence of local files by sending requests with full pathnames in the aFonts array parameter, and then observing the error messages, which differ between existing and nonexistent pathnames.
Tue, 24 Feb 09
ravennuke
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0673
Eval injection vulnerability in the Custom Fields feature in the Your Account module in Raven Web Services RavenNuke 2.30 allows remote authenticated administrators to execute arbitrary PHP code via the ID Field Name box in a yaCustomFields action to admin.php.
Tue, 24 Feb 09
ravennuke
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0672
SQL injection vulnerability in the Resend_Email module in Raven Web Services RavenNuke 2.30 allows remote authenticated administrators to execute arbitrary SQL commands via the user_prefix parameter to modules.php.
Tue, 24 Feb 09
c-client
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0671
Format string vulnerability in the University of Washington (UW) c-client library, as used by the UW IMAP toolkit imap-2007d and other applications, allows remote attackers to execute arbitrary code via format string specifiers in the initial request to the IMAP port (143/tcp).
Tue, 24 Feb 09
websphere_partner_gateway
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0440
IBM WebSphere Partner Gateway (WPG) 6.0.0 through 6.0.0.7 does not properly handle failures of signature verification, which might allow remote authenticated users to submit a crafted RosettaNet (aka RNIF) document to a backend application, related to (1) "altered service content" and (2) "digital signature foot-print."
Tue, 24 Feb 09
libpng
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0040
The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a free of an uninitialized pointer in (1) the png_read_png function, (2) pCAL chunk handling, or (3) setup of 16-bit gamma tables.
Tue, 24 Feb 09
sdms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6236
SQL injection vulnerability in login.php in Simple Document Management System (SDMS) 1.1.5 and 1.1.4, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the login parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Tue, 24 Feb 09
vim
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6235
The Netrw plugin (netrw.vim) in Vim 7.0 and 7.1 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a filename used by the (1) "D" (delete) command or (2) b:netrw_curdir variable, as demonstrated using the netrw.v4 and netrw.v5 test cases.
Tue, 24 Feb 09
vim
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3076
The Netrw plugin 125 in netrw.vim in Vim 7.2a.10 allows user-assisted attackers to execute arbitrary code via shell metacharacters in filenames used by the execute and system functions within the (1) mz and (2) mc commands, as demonstrated by the netrw.v2 and netrw.v3 test cases. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2008-2712.
Tue, 24 Feb 09
CVE-2008-3075 (vim, zipplugin.vim)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3075
The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" (exclamation point) shell metacharacter in (1) the filename of a ZIP archive and possibly (2) the filename of the first file in a ZIP archive, which is not properly handled by zip.vim in the VIM ZIP plugin (zipPlugin.vim) v.11 through v.21, as demonstrated by the zipplugin and zipplugin.v2 test cases. NOTE: this issue reportedly exists because of an incompl...
Tue, 24 Feb 09
CVE-2008-3074 (tar.vim)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3074
The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" (exclamation point) shell metacharacter in (1) the filename of a tar archive and possibly (2) the filename of the first file in a tar archive, which is not properly handled by the VIM TAR plugin (tar.vim) v.10 through v.22, as demonstrated by the shellescape, tarplugin.v2, tarplugin, and tarplugin.updated test cases. NOTE: this issue reportedly exists becau...
Tue, 24 Feb 09
com_musica
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6234
SQL injection vulnerability in the com_musica module in Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
Tue, 24 Feb 09
pre_shopping_mall
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6232
Pre Shopping Mall allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Tue, 24 Feb 09
pre_classified_listings
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6231
Pre Classified Listing PHP allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Tue, 24 Feb 09
content_construction_kit
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6229
Cross-site scripting (XSS) vulnerability in the administrative interface in Drupal Content Construction Kit (CCK) 5.x before 5.x-1.10 and 6.x before 6.x-2.0, a module for Drupal, allows remote authenticated users with "administer content" permissions to inject arbitrary web script or HTML via (1) field labels and (2) content-type names.
Tue, 24 Feb 09
pre_multi-vendor_shopping_malls
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6228
Pre Multi-Vendor Shopping Malls allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Tue, 24 Feb 09
pre_multi-vendor_shopping_malls
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6227
SQL injection vulnerability in buyer_detail.php in Pre Multi-Vendor Shopping Malls allows remote attackers to execute arbitrary SQL commands via the (1) sid and (2) cid parameters.
Tue, 24 Feb 09
php_auto_listings_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6226
SQL injection vulnerability in moreinfo.php in Pre Projects PHP Auto Listings Script, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the itemno parameter.
Tue, 24 Feb 09
wotw
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6224
Directory traversal vulnerability in visualizza.php in Way Of The Warrior (WOTW) 5.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the plancia parameter.
Tue, 24 Feb 09
way_of_the_warrior
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6223
PHP remote file inclusion vulnerability in visualizza.php in Way Of The Warrior (WOTW) 5.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the plancia parameter to crea.php.
Tue, 24 Feb 09
pro_desk_support_center
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6222
Directory traversal vulnerability in the Pro Desk Support Center (com_pro_desk) component 1.0 and 1.2 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the include_file parameter to index.php.
Tue, 24 Feb 09
dada_mail_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6221
PHP remote file inclusion vulnerability in config.dadamail.php in the Dada Mail Manager (com_dadamail) component 2.6 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[mosConfig_absolute_path] parameter.
Tue, 24 Feb 09
simple-document_management_system
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6220
SQL injection vulnerability in login.php in Simple Document Management System (SDMS) 1.1.5 and 1.1.4, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the pass parameter.
Tue, 24 Feb 09
tptest
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0659
Stack-based buffer overflow in the GetStatsFromLine function in TPTEST 3.1.7 allows remote attackers to have an unknown impact via a STATS line with a long email field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Tue, 24 Feb 09
acrobat_reader
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0658
Buffer overflow in Adobe Reader 9.0 and earlier and Acrobat 9.0 and earlier allows remote attackers to execute arbitrary code via a crafted PDF document, related to a non-JavaScript function call, as exploited in the wild in February 2009 by Trojan.Pidief.E.
Tue, 24 Feb 09
face_recognition
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0657
Toshiba Face Recognition 2.0.2.32 allows physically proximate attackers to obtain notebook access by presenting a large number of images for which the viewpoint and lighting have been modified to match a stored image of the authorized notebook user.
Tue, 24 Feb 09
smartlogon
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0656
Asus SmartLogon 1.0.0005 allows physically proximate attackers to bypass "security functions" by presenting an image with a modified viewpoint that matches the posture of a stored image of the authorized notebook user.
Tue, 24 Feb 09
veriface
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0655
Lenovo Veriface III allows physically proximate attackers to login to a Windows account by presenting a "plain image" of the authorized user.
Tue, 24 Feb 09
tor
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0654
Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attackers, with control of an entry router and an exit router, to confirm that a sender and receiver are communicating via vectors involving (1) replaying, (2) modifying, (3) inserting, or (4) deleting a single cell, and then observing cell recognition errors at the exit router. NOTE: the vendor disputes the significance of this issue, noting that the product's design "accepted end-to-end correlation as an attack that is too expe...
Tue, 24 Feb 09
openssl
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0653
OpenSSL, probably 0.9.6, does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack, a related issue to CVE-2002-0970.
Tue, 24 Feb 09
firefox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0652
Mozilla Firefox 3.0.6 does not properly prevent the literal rendering of homoglyph characters in IDN domain names, which allows remote attackers to spoof URLs and conduct phishing attacks, as demonstrated by homoglyphs of the / (slash) and ? (question mark) characters in a subdomain of a .cn domain name, a different vulnerability than CVE-2005-0233.
Tue, 24 Feb 09
cups
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0577
Integer overflow in the WriteProlog function in texttops in CUPS 1.1.17 on Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2008-3640.
Tue, 24 Feb 09
CVE-2009-0651 (veritas_netbackup_server_/enterprise_server)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0651
Unspecified vulnerability in the Veritas network daemon (aka vnetd) in Symantec Veritas NetBackup Server / Enterprise Server 5.x, 6.0 before MP7 SP1, and 6.5 before 6.5.3.1 allows remote attackers to execute arbitrary code via unknown vectors related to "initial communications setup."
Tue, 24 Feb 09
tptest
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0650
Stack-based buffer overflow in the GetStatsFromLine function in TPTEST 3.1.7 and earlier, and possibly 5.02, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a STATS line with a long pwd field. NOTE: some of these details are obtained from third party information.
Tue, 24 Feb 09
n95, symbian
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0649
The web browser in Symbian OS on the Nokia N95 cell phone allows remote attackers to cause a denial of service (crash) via JavaScript code that calls the setAttributeNode method.
Tue, 24 Feb 09
CVE-2008-6219
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6219
nsrexecd.exe in multiple EMC Networker products including EMC NetWorker Server, Storage Node, and Client 7.3.x and 7.4, 7.4.1, 7.4.2, Client and Storage Node for Open VMS 7.3.2 ECO6 and earlier, Module for Microsoft Exchange 5.1 and earlier, Module for Microsoft Applications 2.0 and earlier, Module for Meditech 2.0 and earlier, and PowerSnap 2.4 SP1 and earlier does not properly control the allocation of memory, which allows remote attackers to cause a denial of service (memory exhaustion) vi...
Tue, 24 Feb 09
libpng
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6218
Memory leak in the png_handle_tEXt function in pngrutil.c in libpng before 1.2.33 rc02 and 1.4.0 beta36 allows context-dependent attackers to cause a denial of service (memory exhaustion) via a crafted PNG file.
Mon, 23 Feb 09
drinks
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6233
SQL injection vulnerability in index.php in Five Dollar Scripts Drinks script allows remote attackers to execute arbitrary SQL commands via the recid parameter.
Mon, 23 Feb 09
pre_podcast_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6230
SQL injection vulnerability in Tour.php in Pre Projects Pre Podcast Portal allows remote attackers to execute arbitrary SQL commands via the id parameter.
Mon, 23 Feb 09
airline_ticket_sale_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6225
** DISPUTED ** SQL injection vulnerability in info.php in Mole Group Airline Ticket Sale Script allows remote attackers to execute arbitrary SQL commands via the flight parameter. NOTE: the vendor has disputed this issue, stating "crazy hackers and so named Security companies [spread] out such false informations. Such scripts or versions [do not] exist."
Mon, 23 Feb 09
extrakt_framework
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6217
Cross-site scripting (XSS) vulnerability in index.php in Extrakt Framework 0.7 allows remote attackers to inject arbitrary web script or HTML via the plugins[file][id] parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Mon, 23 Feb 09
booking_system_for_hotels_group
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6216
SQL injection vulnerability in cadena_ofertas_ext.php in Venalsur Booking center Booking System for Hotels Group allows remote attackers to execute arbitrary SQL commands via the OfertaID parameter.
Mon, 23 Feb 09
booking_system_for_hotels_group
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6215
Cross-site scripting (XSS) vulnerability in cadena_ofertas_ext.php in Venalsur Booking center Booking System for Hotels Group allows remote attackers to inject arbitrary web script or HTML via the OfertaID parameter.
Sat, 21 Feb 09
pro_traffic_one
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6214
SQL injection vulnerability in poll_results.php in Harlandscripts Pro Traffic One allows remote attackers to execute arbitrary SQL commands via the id parameter.
Sat, 21 Feb 09
pro_traffic_one
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6213
SQL injection vulnerability in mypage.php in Harlandscripts Pro Traffic One allows remote attackers to execute arbitrary SQL commands via the trg parameter.
Sat, 21 Feb 09
simple_php_news
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0643
Static code injection vulnerability in post.php in Simple PHP News 1.0 final allows remote attackers to inject arbitrary PHP code into news.txt via the post parameter, and then execute the code via a direct request to display.php. NOTE: some of these details are obtained from third party information.
Sat, 21 Feb 09
ruby
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0642
ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate.
Sat, 21 Feb 09
freebsd
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0641
sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid only in older FreeBSD distributions, which might allow remote attackers to execute arbitrary code by passing a crafted environment variable from a telnet client, as demonstrated by an LD_PRELOAD value that references a malicious library.
Sat, 21 Feb 09
dvr4-securanet
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0640
Directory traversal vulnerability in the administrative web server in Swann DVR4-SecuraNet allows remote attackers to read arbitrary files via a .. (dot dot) in the URI, as demonstrated by reading the vy_netman.cfg file that contains passwords.
Sat, 21 Feb 09
hostadmin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6164
Cross-site scripting (XSS) vulnerability in index.php in DreamCost HostAdmin 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
Sat, 21 Feb 09
openx
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6163
SQL injection vulnerability in www/delivery/ac.php in OpenX 2.6.1 allows remote attackers to execute arbitrary SQL commands via the bannerid parameter.
Sat, 21 Feb 09
CVE-2008-6162 (bux.to_clone_script)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6162
Bux.to Clone script allows remote attackers to bypass authentication and gain administrative access by setting the loggedin cookie to 1 and the usNick cookie to admin.
Sat, 21 Feb 09
php-stats
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6212
Cross-site scripting (XSS) vulnerability in admin.php in Php-Stats 0.1.9.1 allows remote attackers to inject arbitrary web script or HTML via the (1) sel_mese and (2) sel_anno parameters in a systems action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
mcgallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6211
Multiple cross-site scripting (XSS) vulnerabilities in PhpForums.net mcGallery 1.1 allow remote attackers to inject arbitrary web script or HTML via the lang parameter to (1) admin.php, (2) index.php, (3) sess.php, (4) stats.php, (5) detail.php, (6) resize.php, and (7) show.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
koobi
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6210
SQL injection vulnerability in index.php in dream4 Koobi 4.4 and 5.4 allows remote attackers to execute arbitrary SQL commands via the img_id parameter in the gallerypic page.
Sat, 21 Feb 09
software_zone
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6209
SQL injection vulnerability in view_product.php in Vastal I-Tech Software Zone allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
Sat, 21 Feb 09
e107
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6208
Cross-site scripting (XSS) vulnerability in submitnews.php in e107 CMS 0.7.11 allows remote attackers to inject arbitrary web script or HTML via the (1) author_name, (2) itemtitle, and (3) item parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
phpg_upload
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6207
Unrestricted file upload vulnerability in form_upload.php in PHPG Upload 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
robotstats
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6206
Multiple PHP remote file inclusion vulnerabilities in RobotStats 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter to (1) graph.php and (2) robotstats.inc.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
urlstreet
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6205
Cross-site scripting (XSS) vulnerability in seeurl.php in Xavier Flahaut URLStreet 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) language, (2) order, and (3) filter parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
supernet_shop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6204
Multiple SQL injection vulnerabilities in SuperNET Shop 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to secure/admin/guncelle.asp, (2) kulad and sifre parameters to secure/admin/giris.asp, and (3) username and password to secure/admin/default.asp.
Sat, 21 Feb 09
cobalt
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6203
SQL injection vulnerability in adminler.asp in CoBaLT 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
cobalt
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6202
SQL injection vulnerability in CoBaLT 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) urun.asp, (2) admin/bayi_listele.asp, (3) admin/urun_grup_listele.asp, and (4) admin/urun_listele.asp.
Sat, 21 Feb 09
kwsphp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6201
Directory traversal vulnerability in help.php in the eskuel module in KwsPHP 1.3.456, as available before 20080416, allows remote attackers to execute arbitrary commands via the action parameter. NOTE: some of these details are obtained from third party information.
Sat, 21 Feb 09
swiki
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6200
Multiple cross-site scripting (XSS) vulnerabilities in Swiki 1.5 allow remote attackers to inject arbitrary web script or HTML via (1) the query string and (2) a new wiki entry.
Sat, 21 Feb 09
2532gigs
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6199
2532designs 2532|Gigs 1.2.2 and earlier allows remote attackers to trigger a backup and obtain sensitive information via a direct request to backup.php, which creates backup.sql under the web root with insufficient access control.
Sat, 21 Feb 09
custom_pages_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6198
SQL injection vulnerability in pages.php in Custom Pages 1.0 plugin for MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL commands via the page parameter.
Sat, 21 Feb 09
galerie_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6197
SQL injection vulnerability in index.php in the galerie module for KwsPHP 1.3.456 allows remote attackers to execute arbitrary SQL commands via the id_gal parameter in a gal action.
Sat, 21 Feb 09
easysite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6196
Multiple PHP remote file inclusion vulnerabilities in Philippe CROCHAT EasySite 2.0 allow remote attackers to execute arbitrary PHP code via a URL in the EASYSITE_BASE parameter to (1) browser.php, (2) image_editor.php and (3) skin_chooser.php in configuration/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 21 Feb 09
landesk_management_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6195
Directory traversal vulnerability in the PXE TFTP Service (PXEMTFTP.exe) in LANDesk Management Suite (LDMS) 8.80.1.1 and earlier allows remote attackers to read arbitrary files via a subdirectory name followed by ".." sequences, a different vulnerability than CVE-2008-1643.
Sat, 21 Feb 09
windows
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6194
Memory leak in the DNS server in Microsoft Windows allows remote attackers to cause a denial of service (memory consumption) via DNS packets. NOTE: this issue reportedly exists because of an incorrect fix for CVE-2007-3898.
Sat, 21 Feb 09
myblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6193
Sam Crew MyBlog stores passwords in cleartext in a MySQL database, which allows context-dependent attackers to obtain sensitive information.
Sat, 21 Feb 09
java_system_portal_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6192
Multiple cross-site scripting (XSS) vulnerabilities in unspecified Portlets in Sun Java System Portal Server 7.0 and 7.1 allow remote attackers to inject arbitrary web script or HTML via unknown vectors.
Sat, 21 Feb 09
swimage_encore
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6191
Conductor.exe in Intrinsic Swimage Encore before 5.0.1.21 contains a hardcoded password, which might allow local users to decrypt certain .bin files. NOTE: it is not clear whether this issue crosses privilege boundaries.
Sat, 21 Feb 09
eebcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6190
Cross-site scripting (XSS) vulnerability in index.php in EEBCMS 0.95 allows remote attackers to inject arbitrary web script or HTML via the content parameter.
Sat, 21 Feb 09
gforge
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6189
SQL injection vulnerability in GForge 4.5.19 allows remote attackers to execute arbitrary SQL commands via the offset parameter to (1) new/index.php, (2) news/index.php and (3) top/topusers.php, which is not properly handled in database-pgsql.php.
Sat, 21 Feb 09
gforge
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6188
SQL injection vulnerability in people/editprofile.php in Gforge 4.6 rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the skill_edit[] parameter.
Sat, 21 Feb 09
gforge
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6187
SQL injection vulnerability in frs/shownotes.php in Gforge 4.5.19 and earlier allows remote attackers to execute arbitrary SQL commands via the release_id parameter.
Sat, 21 Feb 09
raidenftpd
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6186
Stack-based buffer overflow in RaidenFTPD 2.4 build 3620 allows remote authenticated users to cause a denial of service (crash) or execute arbitrary code via long (1) CWD and (2) MLST commands.
Sat, 21 Feb 09
noticeware_email_server_ng
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6185
NoticeWare Email Server NG 5.1.2.2 allows remote attackers to cause a denial of service (crash) via multiple POP3 requests with a long PASS command.
Sat, 21 Feb 09
ownbiblio
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6184
SQL injection vulnerability in the OwnBiblio (com_ownbiblio) component 1.5.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a catalogue action to index.php.
Sat, 21 Feb 09
my_php_indexer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6183
Multiple directory traversal vulnerabilities in index.php in My PHP Indexer 1.0 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) d and (2) f parameters.
Sat, 21 Feb 09
ignitegallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6182
SQL injection vulnerability in the Ignite Gallery (com_ignitegallery) component 0.8.0 through 0.8.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the gallery parameter in a view action to index.php.
Sat, 21 Feb 09
com_mad4joomla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6181
SQL injection vulnerability in the Mad4Joomla Mailforms (com_mad4joomla) component before 1.1.8.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the jid parameter to index.php.
Sat, 21 Feb 09
newlife_blogger
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6180
SQL injection vulnerability in system/nlb_user.class.php in NewLife Blogger 3.0 and earlier, and possibly 3.3.1, allows remote attackers to execute arbitrary SQL commands via the nlb3 cookie.
Sat, 21 Feb 09
indexscript
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6179
SQL injection vulnerability in sug_cat.php in IndexScript 3.0 allows remote attackers to execute arbitrary SQL commands via the parent_id parameter, a different vector than CVE-2007-4069.
Sat, 21 Feb 09
falt4_extreme
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0648
Multiple cross-site request forgery (CSRF) vulnerabilities in the manage_users handler in admin/index.php in Falt4 CMS (aka Falt4 Extreme) RC4 allow remote attackers to change passwords as administrators via (1) edit and (2) edit_now actions.
Sat, 21 Feb 09
windows_live_messenger
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0647
msnmsgr.exe in Windows Live Messenger (WLM) 2009 build 14.0.8064.206, and other 14.0.8064.x builds, allows remote attackers to cause a denial of service (application crash) via a modified header in a packet, as possibly demonstrated by a UTF-8.0 value of the charset field in the Content-Type header line.
Sat, 21 Feb 09
falt4_cms, nukeet
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6178
Unrestricted file upload vulnerability in editor/filemanager/browser/default/connectors/php/connector.php in FCKeditor 2.2, as used in Falt4 CMS, Nuke ET, and other products, allows remote attackers to execute arbitrary code by creating a file with PHP sequences preceded by a ZIP header, uploading this file via a FileUpload action with the application/zip content type, and then accessing this file via a direct request to the file in UserFiles/File/, probably a related issue to CVE-2005-4094. ...
Sat, 21 Feb 09
lightblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6177
Multiple directory traversal vulnerabilities in LightBlog 9.8, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) username parameter to view_member.php, (2) username_post parameter to login.php, and the (3) Lightblog_username cookie parameter to check_user.php.
Sat, 21 Feb 09
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6176
bootstrap.inc in Drupal 5.x before 5.12 and 6.x before 6.6, when the server is configured for "IP-based virtual hosts," allows remote attackers to include and execute arbitrary local files via unspecified vectors.
Sat, 21 Feb 09
silvershield
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6175
SilverSHielD 1.0.2.34 allows remote attackers to cause a denial of service (application crash) via a crafted argument to the opendir SFTP command.
Sat, 21 Feb 09
jetbox_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6174
Cross-site scripting (XSS) vulnerability in admin/postlister/index.php in Jetbox CMS 2.1 allows remote attackers to inject arbitrary web script or HTML via the liste parameter.
Sat, 21 Feb 09
clipshare
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6173
Cross-site scripting (XSS) vulnerability in fullscreen.php in ClipShare Pro 4.0 allows remote attackers to inject arbitrary web script or HTML via the title parameter.
Sat, 21 Feb 09
rwcards
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6172
Directory traversal vulnerability in captcha/captcha_image.php in the RWCards (com_rwcards) 3.0.11 component for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the img parameter.
Sat, 21 Feb 09
djbdns
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4392
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority (SOA) query.
Fri, 20 Feb 09
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6171
Drupal 5.x before 5.12 and 6.x before 6.6, when the server is configured for "IP-based virtual hosts," allows remote attackers to include and execute arbitrary files via unspecified vectors.
Fri, 20 Feb 09
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6170
Cross-site scripting (XSS) vulnerability in Drupal 5.x before 5.12 and 6.x before 6.6, allows remote authenticated users with create book content or edit node book hierarchy permissions to inject arbitrary web script or HTML via the book page title.
Fri, 20 Feb 09
localization_client, localization_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6169
Cross-site request forgery (CSRF) vulnerability in the Localization client 5.x before 5.x-1.1 and 6.x before 6.x-1.6 and the Localization server 5.x before 5.x-1.0-alpha5 and 6.x before 6.x-alpha2, modules for Drupal, allows remote attackers to perform unauthorized actions as administrators via unspecified vectors related to the "local translation submission interface."
Fri, 20 Feb 09
miniportail
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6168
Cross-site scripting (XSS) vulnerability in search.php in miniPortail 2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified argument, probably the search string.
Fri, 20 Feb 09
miniportail
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6167
Directory traversal vulnerability in search.php in miniPortail 2.2 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lng parameter.
Fri, 20 Feb 09
com_kbase
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6166
SQL injection vulnerability in the KBase (com_kbase) 1.2 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an article action to index.php.
Fri, 20 Feb 09
cspartner
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6165
SQL injection vulnerability in gestion.php in CSPartner 0.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the (1) pseudo and (2) passe parameters.
Fri, 20 Feb 09
4site_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0646
Multiple SQL injection vulnerabilities in 4Site CMS 2.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) login and (2) password parameters to pcgi/4site.pl, (3) page parameter to print/print.shtml, (4) s and (5) i parameters to portfolio/index.shtml, (6) h parameter to hotel/index.php, (7) id parameter to news/news1.shtml, and the (8) th parameter to faq/index.shtml.
Fri, 20 Feb 09
jaws
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0645
Directory traversal vulnerability in index.php in Jaws 0.8.8 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the (1) language, (2) Introduction_complete, and (3) use_log parameters, different vectors than CVE-2004-2445.
Fri, 20 Feb 09
analysis_console_for_intrusion_databases, basic_analysis_and_security_engine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-4878
Multiple cross-site scripting (XSS) vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.2, and unspecified other console scripts in these products, allow remote attackers to inject arbitrary web script or HTML via the sig[1] parameter and possibly other parameters, a different vulnerability than CVE-2007-6156.
Fri, 20 Feb 09
dvr4-securanet
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0644
The HTTP interface in Swann DVR4-SecuraNet has a certain default administrative username and password, which makes it easier for remote attackers to obtain privileged access.
Fri, 20 Feb 09
phpyabs
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0639
PHP remote file inclusion vulnerability in moduli/libri/index.php in phpyabs 0.1.2 allows remote attackers to execute arbitrary PHP code via a URL in the Azione parameter.
Fri, 20 Feb 09
opensuse
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0310
Buffer overflow in SUSE blinux (aka sbl) in SUSE openSUSE 10.3 through 11.0 has unknown impact and attack vectors related to "incoming data and authentication-strings."
Fri, 20 Feb 09
wow_raid_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6161
Cross-site scripting (XSS) vulnerability in WOW Raid Manager (WRM) before 3.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Fri, 20 Feb 09
semantically_interconnected_online_communities
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6160
Semantically-Interconnected Online Communities (SIOC) 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, does not properly implement menu and database APIs, which allows remote attackers to obtain usernames and read hashed emails and comments via unspecified vectors.
Thu, 19 Feb 09
cmme
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6159
Content Management Made Easy (CMME) 1.19 allows remote attackers to obtain system information via a direct request to info.php, which invokes the phpinfo function.
Thu, 19 Feb 09
interscan_web_security_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0613
Trend Micro InterScan Web Security Suite (IWSS) 3.1 before build 1237 allows remote authenticated Auditor and Report Only users to bypass intended permission settings, and modify the system configuration, via requests to unspecified JSP pages.
Thu, 19 Feb 09
interscan_web_security_suite, interscan_web_security_virtual_appliance
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0612
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 3.x and InterScan Web Security Suite (IWSS) 3.x, when basic authorization is enabled on the standalone proxy, forwards the Proxy-Authorization header from Windows Media Player, which allows remote web servers to obtain credentials by offering a media stream and then capturing this header.
Thu, 19 Feb 09
open_enterprise_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0611
Multiple cross-site scripting (XSS) vulnerabilities in qfsearch/AdminServlet in QuickFinder Server in Novell Open Enterprise Server 1.x allow remote attackers to inject arbitrary web script or HTML via (1) the siteloc parameter in a displayaddsite action, the site parameter in a (2) generalproperties or (3) clusterserviceproperties action, (4) the adminurl parameter in a global action, or (5) the print-list parameter.
Thu, 19 Feb 09
simple_php_news
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0610
Multiple static code injection vulnerabilities in post.php in Simple PHP News 1.0 final allow remote attackers to inject arbitrary PHP code into news.txt via the (1) title or (2) date parameter, and then execute the code via a direct request to display.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Thu, 19 Feb 09
java_system_directory_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0609
Sun Java System Directory Proxy Server in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3, when a JDBC data source is used, does not properly handle (1) a long value in an ADD or (2) long string attributes, which allows remote attackers to cause a denial of service (JDBC backend outage) via crafted LDAP requests.
Thu, 19 Feb 09
android_sdk
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0608
Integer overflow in the showLog function in fake_log_device.c in liblog in Open Handset Alliance Android 1.0 allows attackers to trigger a buffer overflow and possibly have unspecified other impact by sending a large number of input lines.
Thu, 19 Feb 09
android_sdk
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0607
Multiple integer overflows in malloc_leak.c in Bionic in Open Handset Alliance Android 1.0 have unknown impact and attack vectors, related to the (1) chk_calloc and (2) leak_calloc functions.
Thu, 19 Feb 09
android_sdk
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0606
The link_image function in linker/linker.c in the dynamic linker in Bionic in Open Handset Alliance Android 1.0 on the T-Mobile G1 phone does not properly handle file descriptors 0, 1, and 2 for a setgid program, which allows local users to create arbitrary files owned by certain groups, possibly a related issue to CVE-2002-0820.
Thu, 19 Feb 09
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0605
Stack consumption vulnerability in the do_page_fault function in arch/x86/mm/fault.c in the Linux kernel before 2.6.28.5 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via unspecified vectors that trigger page faults on a machine that has a registered Kprobes probe.
Thu, 19 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0504
WSPolicy in the Web Services component in IBM WebSphere Application Server (WAS) 7.0.x before 7.0.0.1 does not properly recognize the IDAssertion.isUsed binding property, which allows local users to discover a password by reading a SOAP message.
Wed, 18 Feb 09
barnowel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0363
Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b) owl 2.1.11 allow remote attackers to execute arbitrary code via vectors involving (1) a crafted zcrypt message, related to zcrypt.c; (2) a reply command on a message with a Zephyr Cc: list, related to zwrite.c; and unspecified other use of the products.
Wed, 18 Feb 09
samizdat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0359
Multiple cross-site scripting (XSS) vulnerabilities in Samizdat before 0.6.2 allow remote authenticated users to inject arbitrary web script or HTML via the (1) message title or (2) user full name.
Wed, 18 Feb 09
CVE-2008-6158 (w3b>cms)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6158
Multiple unspecified vulnerabilities in the admin backend in w3b>cms (aka w3blabor CMS) before 3.2.0 have unknown impact and remote attack vectors.
Wed, 18 Feb 09
classified_ads
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6157
SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, which allows context-dependent attackers to obtain sensitive information.
Wed, 18 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4285
Unspecified vulnerability in the Performance Monitoring Infrastructure (PMI) feature in the Servlet Engine/Web Container component in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.19, when a component statistic is enabled, allows attackers to cause a denial of service (daemon crash) via vectors related to "a gradual degradation in performance."
Wed, 18 Feb 09
php_director
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0604
SQL injection vulnerability in index.php in PHP Director 0.21 and earlier allows remote attackers to execute arbitrary SQL commands via the searching parameter.
Wed, 18 Feb 09
link_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0603
Cross-site scripting (XSS) vulnerability in index.php in the Link module 5.x-2.5 for Drupal 5.10 allows remote authenticated users, with "administer content types" privileges, to inject arbitrary web script or HTML via the description parameter (aka the Help field). NOTE: some of these details are obtained from third party information.
Wed, 18 Feb 09
wikkitikkitavi
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0602
Unrestricted file upload vulnerability in upload.php in WikkiTikkiTavi 1.11 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in img/.
Wed, 18 Feb 09
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0601
Format string vulnerability in Wireshark 0.99.8 through 1.0.5 on non-Windows platforms allows local users to cause a denial of service (application crash) via format string specifiers in the HOME environment variable.
Wed, 18 Feb 09
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0600
Wireshark 0.99.6 through 1.0.5 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted Tektronix K12 text capture file, as demonstrated by a file with exactly one frame.
Wed, 18 Feb 09
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0599
Buffer overflow in wiretap/netscreen.c in Wireshark 0.99.7 through 1.0.5 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed NetScreen snoop file.
Wed, 18 Feb 09
adman
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6156
SQL injection vulnerability in editCampaign.php in AdMan 1.1.20070907 allows remote authenticated users to execute arbitrary SQL commands via the campaignId parameter.
Wed, 18 Feb 09
text_links_ads
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6155
SQL injection vulnerability in index.php in Hispah Text Links Ads 1.1 allows remote attackers to execute arbitrary SQL commands via the idtl parameter in a buy action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 18 Feb 09
text_links_ads
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6154
SQL injection vulnerability in index.php in Hispah Text Links Ads 1.1 allows remote attackers to execute arbitrary SQL commands via the idcat parameter.
Wed, 18 Feb 09
phpmesfilms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0598
SQL injection vulnerability in index.php in PhpMesFilms 1.0 and 1.8 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 18 Feb 09
aka_w3blabor_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0597
SQL injection vulnerability in admin/index.php in w3b>cms (aka w3blabor CMS) before 3.4.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the benutzername parameter (aka Username field) in a login action.
Wed, 18 Feb 09
phpskelsite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0596
Directory traversal vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the TplSuffix parameter.
Wed, 18 Feb 09
phpskelsite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0595
PHP remote file inclusion vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the theme parameter.
Wed, 18 Feb 09
phpskelsite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0594
Cross-site scripting (XSS) vulnerability in index.php in phpSkelSite 1.4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Wed, 18 Feb 09
plx_auto_reminder
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0593
SQL injection vulnerability in members.php in plx Auto Reminder 3.7 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a newar action.
Wed, 18 Feb 09
pnphpbb2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0592
Multiple directory traversal vulnerabilities in PNphpBB2 1.2i and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ModName parameter to (1) admin_words.php, (2) admin_groups_reapir.php, (3) admin_smilies.php, (4) admin_ranks.php, (5) admin_styles.php, and (6) admin_users.php in admin/.
Wed, 18 Feb 09
pixel8_web_photo_album
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6153
SQL injection vulnerability in Photo.asp in Jay Patel Pixel8 Web Photo Album 3.0 allows remote attackers to execute arbitrary SQL commands via the AlbumID parameter.
Wed, 18 Feb 09
faculty_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6152
SQL injection vulnerability in deptdisplay.asp in SepCity Faculty Portal allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: this was originally reported for Lawyer Portal, which does not have a deptdisplay.asp file.
Wed, 18 Feb 09
shopping_mall
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6151
SQL injection vulnerability in shpdetails.asp in SepCity Shopping Mall allows remote attackers to execute arbitrary SQL commands via the ID parameter.
Wed, 18 Feb 09
classified_ads
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6150
SQL injection vulnerability in classdis.asp in SepCity Classified Ads allows remote attackers to execute arbitrary SQL commands via the ID parameter.
Tue, 17 Feb 09
com_mdigg
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6149
SQL injection vulnerability in the mDigg (com_mdigg) component 2.2.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cagtegory parameter in a story_lists action to index.php.
Tue, 17 Feb 09
liveticker
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6148
SQL injection vulnerability in the Live Ticker (com_liveticker) module 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the tid parameter in a viewticker action to index.php.
Tue, 17 Feb 09
forumapp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6147
ForumApp 3.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) data/8690.mdb or (2) data/8690BAK.mdb.
Tue, 17 Feb 09
deluxebb
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6146
SQL injection vulnerability in pm.php in DeluxeBB 1.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via a delete##### parameter in a Delete action, a different vector than CVE-2005-2989.
Tue, 17 Feb 09
wec_discussion_forum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6145
Multiple SQL injection vulnerabilities in the WEC Discussion Forum (wec_discussion) extension 1.7.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
Tue, 17 Feb 09
wec_discussion_forum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6144
Multiple cross-site scripting (XSS) vulnerabilities in the WEC Discussion Forum (wec_discussion) extension 1.7.0 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-3029.
Tue, 17 Feb 09
owenpoll
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6143
OwenPoll 1.0 allows remote attackers to bypass authentication and obtain administrative access via a modified account name in the username cookie.
Tue, 17 Feb 09
flexphpic
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6142
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPic 0.0.4 and FlexPHPic Pro 0.0.3, and other 0.0.x versions, allow remote attackers to execute arbitrary SQL commands via (1) the checkuser parameter (aka username field), or (2) the checkpass parameter (aka password field), to admin/index.php.
Tue, 17 Feb 09
ip_soft_phone
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6141
Unspecified vulnerability in Avaya IP Softphone 6.0 SP4 and 6.01.85 allows remote attackers to cause a denial of service (crash) via a large amount of H.323 data.
Tue, 17 Feb 09
one-x
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6140
Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Avaya one-X Desktop Edition 2.1.0.78 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
Tue, 17 Feb 09
modules_controller
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6139
Directory traversal vulnerability in faqsupport/wce.download.php in WebBiscuits Modules Controller 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the download parameter.
Tue, 17 Feb 09
modules_controller
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6138
PHP remote file inclusion vulnerability in adminhead.php in WebBiscuits Modules Controller 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter.
Tue, 17 Feb 09
everyblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6137
EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to bypass access restrictions via unknown vectors.
Tue, 17 Feb 09
everyblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6136
Unspecified vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to gain privileges as another user or an administrator via unknown attack vectors.
Tue, 17 Feb 09
everyblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6135
Cross-site scripting (XSS) vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Tue, 17 Feb 09
everyblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6134
SQL injection vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Tue, 17 Feb 09
full_php_emlak_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6133
SQL injection vulnerability in arsaprint.php in Full PHP Emlak Script allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3942.
Tue, 17 Feb 09
phpscheduleit
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6132
Eval injection vulnerability in reserve.php in phpScheduleIt 1.2.10 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via the start_date parameter.
Tue, 17 Feb 09
mozilowiki
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6131
Session fixation vulnerability in moziloWiki 1.0.1 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Tue, 17 Feb 09
mozilowiki
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6130
Cross-site scripting (XSS) vulnerability in index.php in moziloWiki 1.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) action and (2) page parameters.
Tue, 17 Feb 09
mozilowiki
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6129
Directory traversal vulnerability in print.php in moziloWiki 1.0.1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.
Tue, 17 Feb 09
mozilocms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6128
Session fixation vulnerability in moziloCMS 1.10.2 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Tue, 17 Feb 09
mozilocms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6127
Multiple cross-site scripting (XSS) vulnerabilities in moziloCMS 1.10.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) page and (2) query parameters to (a) index.php, (3) cat and (4) file parameters to (b) download.php, (5) gal parameter to gallery.php, and the (6) URL to admin/login.php.
Tue, 17 Feb 09
mozilocms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6126
Multiple directory traversal vulnerabilities in moziloCMS 1.10.2 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) file parameter to download.php and the (2) page parameter to index.php, a different vector than CVE-2008-3589.
Tue, 17 Feb 09
java_system_directory_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0576
Unspecified vulnerability in Sun Java System Directory Server 5.2 p6 and earlier, and Enterprise Edition 5, allows remote attackers to cause a denial of service (daemon crash) via crafted LDAP requests.
Tue, 17 Feb 09
views_bulk_operations
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0575
Cross-site scripting (XSS) vulnerability in the theme_views_bulk_operations_confirmation function in views_bulk_operations.module in Views Bulk Operations 5.x before 5.x-1.3 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to node titles. NOTE: some of these details are obtained from third party information.
Tue, 17 Feb 09
easycafeengine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0574
SQL injection vulnerability in index.php in Easy CafeEngine allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-4604.
Tue, 17 Feb 09
fotoweb
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0573
Multiple cross-site scripting (XSS) vulnerabilities in FotoWeb 6.0 (Build 273) allow remote attackers to inject arbitrary web script or HTML via the (1) s parameter to cmdrequest/Login.fwx and the (2) search parameter to Grid.fwx.
Tue, 17 Feb 09
flatnux
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0572
PHP remote file inclusion vulnerability in include/flatnux.php in FlatnuX CMS (aka Flatnuke3) 2009-01-27 and 2009-02-04, when register_globals is enabled and magic_quotes_gpc disabled, allows remote attackers to execute arbitrary PHP code via a URL in the _FNROOTPATH parameter to (1) index.php and (2) filemanager.php.
Tue, 17 Feb 09
mailist
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0571
admin.php in Ninja Designs Mailist 3.0 stores backup copies of maillist.php under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to the backup directory.
Tue, 17 Feb 09
mailist
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0570
Directory traversal vulnerability in send.php in Ninja Designs Mailist 3.0, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the load parameter. NOTE: some of these details are obtained from third party information.
Tue, 17 Feb 09
websphere_message_broker
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0503
IBM WebSphere Message Broker 6.1.x before 6.1.0.2 writes a database connection password to the Event Log and System Log during exception handling for a JDBC error, which allows local users to obtain sensitive information by reading these logs.
Sat, 14 Feb 09
pam-krb5
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0361
Russ Allbery pam-krb5 before 3.13, as used by libpam-heimdal, su in Solaris 10, and other software, does not properly handle calls to pam_setcred when running setuid, which allows local users to overwrite and change the ownership of arbitrary files by setting the KRB5CCNAME environment variable, and then launching a setuid application that performs certain pam_setcred operations.
Sat, 14 Feb 09
pam-krb5
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0360
Russ Allbery pam-krb5 before 3.13, when linked against MIT Kerberos, does not properly initialize the Kerberos libraries for setuid use, which allows local users to gain privileges by pointing an environment variable to a modified Kerberos configuration file, and then launching a PAM-based setuid application.
Sat, 14 Feb 09
ifix
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0216
GE Fanuc iFIX 5.0 and earlier relies on client-side authentication involving a weakly encrypted local password file, which allows remote attackers to bypass intended access restrictions and start privileged server login sessions by recovering a password or by using a modified program module.
Sat, 14 Feb 09
CVE-2009-0569 (becky!_internet_mail)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0569
Buffer overflow in Becky! Internet Mail 2.48.02 and earlier allows remote attackers to execute arbitrary code via a mail message with a crafted return receipt request.
Sat, 14 Feb 09
fail2ban
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0362
filter.d/wuftpd.conf in Fail2ban 0.8.3 uses an incorrect regular expression that allows remote attackers to cause a denial of service (forced authentication failures) via a crafted reverse-resolved DNS name (rhost) entry that contains a substring that is interpreted as an IP address, a different vulnerability than CVE-2007-4321.
Sat, 14 Feb 09
moodle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6125
Unspecified vulnerability in the user editing interface in Moodle 1.5.x, 1.6 before 1.6.6, and 1.7 before 1.7.3 allows remote authenticated users to gain privileges via unknown vectors.
Sat, 14 Feb 09
moodle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6124
SQL injection vulnerability in the hotpot_delete_selected_attempts function in report.php in the HotPot module in Moodle 1.6 before 1.6.7, 1.7 before 1.7.5, 1.8 before 1.8.6, and 1.9 before 1.9.2 allows remote attackers to execute arbitrary SQL commands via a crafted selected attempt.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0141
XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, creates tty devices with insecure world-writable permissions, which allows local users to write to the Xterm of another user.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0140
Unspecified vulnerability in the SMB component in Apple Mac OS X 10.4.11 and 10.5.6 allows remote SMB servers to cause a denial of service (memory exhaustion and system shutdown) via a crafted file system name.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0139
Integer overflow in the SMB component in Apple Mac OS X 10.5.6 allows remote SMB servers to cause a denial of service (system shutdown) or execute arbitrary code via a crafted SMB file system that triggers a heap-based buffer overflow.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0138
servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers to modify the system configuration.
Sat, 14 Feb 09
safari
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0137
Multiple unspecified vulnerabilities in Safari RSS in Apple Mac OS X 10.4.11 and 10.5.6, and Windows XP and Vista, allow remote attackers to execute arbitrary JavaScript in the local security zone via a crafted feed: URL, related to "input validation issues."
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0020
Unspecified vulnerability in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted resource fork that triggers memory corruption.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0019
Remote Apple Events in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) or obtain sensitive information via unspecified vectors that trigger an out-of-bounds memory access.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0018
The Remote Apple Events server in Apple Mac OS X 10.4.11 and 10.5.6 does not properly initialize a buffer, which allows remote attackers to read portions of memory.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0017
csregprinter in the Printing component in Apple Mac OS X 10.4.11 and 10.5.6 does not properly handle error conditions, which allows local users to execute arbitrary code via unknown vectors that trigger a heap-based buffer overflow.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0015
Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10.5.6 allows local users to obtain sensitive information (filesystem activities and directory names) via unknown vectors related to "credential management."
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0014
Folder Manager in Apple Mac OS X 10.5.6 uses insecure default permissions when recreating a Downloads folder after it has been deleted, which allows local users to bypass intended access restrictions and read the Downloads folder.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0013
dscl in DS Tools in Apple Mac OS X 10.4.11 and 10.5.6 requires that passwords must be provided as command line arguments, which allows local users to gain privileges by listing process information.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0012
Heap-based buffer overflow in CoreText in Apple Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via a crafted crafted Unicode string.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0011
Certificate Assistant in Apple Mac OS X 10.5.6 allows local users to overwrite arbitrary files via unknown vectors related to an "insecure file operation" on a temporary file.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0009
Unspecified vulnerability in the Pixlet codec in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted movie file that triggers memory corruption.
Sat, 14 Feb 09
remote_administrator
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0548
Cross-site scripting (XSS) vulnerability in the Additional Report Settings interface in ESET Remote Administrator before 3.0.105 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information.
Sat, 14 Feb 09
evolution
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0547
Evolution 2.22.3.1 checks S/MIME signatures against a copy of the e-mail text within a signed-data blob, not the copy of the e-mail text displayed to the user, which allows remote attackers to spoof a signature by modifying the latter copy, a different vulnerability than CVE-2008-5077.
Sat, 14 Feb 09
feeddemon
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0546
Stack-based buffer overflow in NewsGator FeedDemon 2.7 and earlier allows user-assisted remote attackers to execute arbitrary code via a long text attribute in an outline element in a .opml file.
Sat, 14 Feb 09
zeroshell
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0545
cgi-bin/kerbynet in ZeroShell 1.0beta11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the type parameter in a NoAuthREQ x509List action.
Sat, 14 Feb 09
mac_os_x, mac_os_x_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0142
Race condition in AFP Server in Apple Mac OS X 10.5.6 allows local users to cause a denial of service (infinite loop) via unspecified vectors related to "file enumeration logic."
Sat, 14 Feb 09
arc2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0544
Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large ARC2 key length.
Sat, 14 Feb 09
proftpd
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0543
ProFTPD Server 1.3.1, with NLS support enabled, allows remote attackers to bypass SQL injection protection mechanisms via invalid, encoded multibyte characters, which are not properly handled in (1) mod_sql_mysql and (2) mod_sql_postgres.
Fri, 13 Feb 09
proftpd
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0542
SQL injection vulnerability in ProFTPD Server 1.3.1 through 1.3.2rc2 allows remote attackers to execute arbitrary SQL commands via a "%" (percent) character in the username, which introduces a "'" (single quote) character during variable substitution by mod_sql.
Fri, 13 Feb 09
net-snmp, net_snmp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6123
The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to "source/destination IP address confusion."
Fri, 13 Feb 09
aix
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0536
at in bos.rte.cron on IBM AIX 5.2.0, 5.3.0 through 5.3.9, and 6.1.0 through 6.1.2 allows local users to read arbitrary files via unspecified vectors, related to failure to drop root privileges.
Fri, 13 Feb 09
thyme
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0535
Directory traversal vulnerability in export.php in Thyme 1.3 and earlier, when register_globals is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the export_to parameter.
Fri, 13 Feb 09
flexcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0534
SQL injection vulnerability in FlexCMS allows remote attackers to execute arbitrary SQL commands via the catId parameter.
Fri, 13 Feb 09
ez_reminder
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0533
Cross-site scripting (XSS) vulnerability in password.php in Scripts for Sites EZ Reminder allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 13 Feb 09
ez_baby
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0532
Cross-site scripting (XSS) vulnerability in password.php in Scripts For Sites (SFS) EZ Baby allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 13 Feb 09
a_better_member-based_asp_photo_gallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0531
SQL injection vulnerability in gallery/view.asp in A Better Member-Based ASP Photo Gallery before 1.2 allows remote attackers to execute arbitrary SQL commands via the entry parameter.
Fri, 13 Feb 09
snippetmaster_webpage_editor
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0530
Multiple PHP remote file inclusion vulnerabilities in SnippetMaster 2.2.2, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) _SESSION[SCRIPT_PATH] parameter to includes/vars.inc.php and the (2) g_pcltar_lib_dir parameter to includes/tar_lib/pcltar.lib.php.
Fri, 13 Feb 09
snippetmaster_webpage_editor
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0529
Cross-site scripting (XSS) vulnerability in index.php in SnippetMaster Webpage Editor 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the language parameter.
Fri, 13 Feb 09
if-cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0528
SQL injection vulnerability in frame.php in Rhadrix If-CMS 2.07 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Fri, 13 Feb 09
adaptcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0527
PHP remote file inclusion vulnerability in plugins/rss_importer_functions.php in AdaptCMS Lite 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter.
Fri, 13 Feb 09
adaptcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0526
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AdaptCMS Lite 1.4 allow remote attackers to inject arbitrary web script or HTML via the (1) url and (2) acuparam parameters, and (3) the URI.
Fri, 13 Feb 09
sajax
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0525
Cross-site scripting (XSS) vulnerability in the sajax_get_common_js function in php/Sajax.php in Sajax 0.12 allows remote attackers to inject arbitrary web script or HTML via the URL parameter, which is not properly handled when using browsers that do not URL-encode requests, such as Internet Explorer 6. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 13 Feb 09
libvirt
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0036
Buffer overflow in the proxyReadClientSocket function in proxy/libvirt_proxy.c in libvirt_proxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to use of uninitialized memory in a validation check.
Fri, 13 Feb 09
wgr614
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6122
The web management interface in Netgear WGR614v9 allows remote attackers to cause a denial of service (crash) via a request that contains a question mark ("?").
Fri, 13 Feb 09
socialengine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6121
CRLF injection vulnerability in SocialEngine (SE) 2.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the PHPSESSID cookie.
Fri, 13 Feb 09
socialengine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6120
SQL injection vulnerability in profile_comments.php in SocialEngine (SE) 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the comment_secure parameter.
Fri, 13 Feb 09
goople_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6119
Static code injection vulnerability in gooplecms/admin/account/action/editpass.php in Goople CMS 1.7 allows remote attackers to inject arbitrary PHP code into admin/userandpass.php via the (1) username and (2) password parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 13 Feb 09
goople_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6118
win/content/upload.php in Goople CMS 1.7 allows remote attackers to bypass authentication and gain administrative access by setting the loggedin cookie to 1.
Fri, 13 Feb 09
pg_job_site_pro
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6117
SQL injection vulnerability in homepage.php in PG Job Site Pro allows remote attackers to execute arbitrary SQL commands via the poll_view_id parameter in a results action.
Fri, 13 Feb 09
com_thyme
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6116
SQL injection vulnerability in the EXtrovert Software Thyme (com_thyme) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the event parameter to index.php.
Fri, 13 Feb 09
hosting_index
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6115
SQL injection vulnerability in directory.php in Prozilla Hosting Index allows remote attackers to execute arbitrary SQL commands via the id parameter in a deadlink action, a different vector than CVE-2008-2083.
Fri, 13 Feb 09
zogo_shop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6114
SQL injection vulnerability in product_details.php in the Mytipper Zogo-shop 1.15.4 plugin for e107 allows remote attackers to execute arbitrary SQL commands via the product parameter.
Fri, 13 Feb 09
semanticscuttle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6113
Cross-site scripting (XSS) vulnerability in SemanticScuttle before 0.90 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to the (1) username and (2) profile page.
Fri, 13 Feb 09
ez_ringtone_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6112
Multiple directory traversal vulnerabilities in Ez Ringtone Manager allow remote attackers to read arbitrary files via a .. (dot dot) in the id parameter in a detail action to (1) main.php and (2) template.php in ringtones/.
Fri, 13 Feb 09
vlog_system
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6111
SQL injection vulnerability in blog.php in NetArt Media Vlog System 1.1 allows remote attackers to execute arbitrary SQL commands via the note parameter.
Thu, 12 Feb 09
semanticscuttle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6110
Unspecified vulnerability in SemanticScuttle before 0.90 has unknown impact and attack vectors related to improper validation of parameters to profile.php.
Thu, 12 Feb 09
phpslash
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0517
Eval injection vulnerability in index.php in phpSlash 0.8.1.1 and earlier allows remote attackers to execute arbitrary PHP code via the fields parameter, which is supplied to an eval function call within the generic function in include/class/tz_env.class. NOTE: some of these details are obtained from third party information.
Thu, 12 Feb 09
businessspace
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0516
SQL injection vulnerability in the classified page (classified.php) in BusinessSpace 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
Thu, 12 Feb 09
yanocc
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0515
Directory traversal vulnerability in check_lang.php in Yet Another NOCC (YANOCC) 0.1.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
Thu, 12 Feb 09
webframe
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0514
Multiple directory traversal vulnerabilities in WebFrame 0.76 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) currentmod and (2) LANG parameters to mod/index.php.
Thu, 12 Feb 09
webframe
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0513
Multiple PHP remote file inclusion vulnerabilities in WebFrame 0.76 allow remote attackers to execute arbitrary PHP code via a URL in the classFiles parameter to (1) admin/doc/index.php, (2) index.php, and (3) base/menu.php in mod/.
Thu, 12 Feb 09
opencore
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0475
Integer underflow in the Huffman decoding functionality (pvmp3_huffman_parsing.cpp) in OpenCORE 2.0 and earlier allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a crafted MP3 file that triggers heap corruption.
Thu, 12 Feb 09
glfusion
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0455
Cross-site scripting (XSS) vulnerability in the anonymous comments feature in lib-comment.php in glFusion 1.1.0, 1.1.1, and earlier versions allows remote attackers to inject arbitrary web script or HTML via the username parameter to comment.php.
Thu, 12 Feb 09
animal_shelter_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6109
Robin Rawson-Tetley Animal Shelter Manager (ASM) before 2.2.2 does not properly enforce the privileges of user accounts, which allows local users to bypass intended access restrictions by (1) opening unspecified screens, related to the "double click selector bug"; or modifying a (2) animal, (3) owner, (4) lost/found, (5) diary note, (6) owner donation, or (7) waiting list record, related to "change permissions" and the "new UI."
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0438
IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 on Windows allows remote attackers to bypass "Authorization checking" and obtain sensitive information from JSP pages via a crafted request. NOTE: this is probably a duplicate of CVE-2008-5412.
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0437
The Installation Factory installation process for IBM WebSphere Application Server (WAS) 6.0.2 on Windows, when WAS is registered as a Windows service, allows local users to obtain sensitive information by reading the logs/instconfigifwas6.log log file.
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0436
The (1) mod_ibm_ssl and (2) mod_cgid modules in IBM HTTP Server 6.0.x before 6.0.2.31 and 6.1.x before 6.1.0.19, as used in WebSphere Application Server (WAS), set incorrect permissions for AF_UNIX sockets, which has unknown impact and local attack vectors.
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0435
Unspecified vulnerability in the IBM Asynchronous I/O (aka AIO or libibmaio) library in the Java Message Service (JMS) component in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.17 on AIX 5.3 allows attackers to cause a denial of service (daemon crash) via vectors related to the aio_getioev2 and getEvent methods.
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0434
PerfServlet in the PMI/Performance Tools component in IBM WebSphere Application Server (WAS) 6.0.x before 6.0.2.31, 6.1.x before 6.1.0.21, and 7.0.x before 7.0.0.1, when Performance Monitoring Infrastructure (PMI) is enabled, allows local users to obtain sensitive information by reading the (1) systemout.log and (2) ffdc files. NOTE: this is probably a duplicate of CVE-2008-5413.
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0433
Unspecified vulnerability in IBM WebSphere Application Server (WAS) 5.1.x before 5.1.1.19, 6.0.x before 6.0.2.29, and 6.1.x before 6.1.0.19, when Web Server plug-in content buffering is enabled, allows attackers to cause a denial of service (daemon crash) via unknown vectors, related to a mishandling of client read failures in which clients receive many 500 HTTP error responses and backend servers are incorrectly labeled as down.
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0432
The installation process for the File Transfer servlet in the System Management/Repository component in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.19 does not enable the secure version, which allows remote attackers to obtain sensitive information via unspecified vectors.
Thu, 12 Feb 09
blackberry_application_web_loader
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0305
Buffer overflow in the Research in Motion RIM AxLoader ActiveX control in AxLoader.ocx and AxLoader.dll in BlackBerry Application Web Loader 1.0 allows remote attackers to execute arbitrary code via unspecified vectors.
Thu, 12 Feb 09
exchange_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0099
The Electronic Messaging System Microsoft Data Base (EMSMDB32) provider in Microsoft Exchange 2000 Server SP3 and Exchange Server 2003 SP2, as used in Exchange System Attendant, allows remote attackers to cause a denial of service (application outage) via a malformed MAPI command, aka "Literal Processing Vulnerability."
Thu, 12 Feb 09
exchange_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0098
Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and Exchange Server 2007 SP1 do not properly interpret Transport Neutral Encapsulation (TNEF) properties, which allows remote attackers to execute arbitrary code via a crafted TNEF message, aka "Memory Corruption Vulnerability."
Thu, 12 Feb 09
visio
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0097
Microsoft Office Visio 2002 SP2 and 2003 SP3 does not properly validate memory allocation for Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Memory Corruption Vulnerability."
Thu, 12 Feb 09
visio
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0096
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly perform memory copy operations for object data, which allows remote attackers to execute arbitrary code via a crafted Visio document, aka "Memory Corruption Vulnerability."
Thu, 12 Feb 09
visio
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0095
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly validate object data in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Memory Validation Vulnerability."
Thu, 12 Feb 09
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0076
Microsoft Internet Explorer 7, when XHTML strict mode is used, allows remote attackers to execute arbitrary code via the zoom style directive in conjunction with unspecified other directives in a malformed Cascading Style Sheets (CSS) stylesheet in a crafted HTML document, aka "CSS Memory Corruption Vulnerability."
Thu, 12 Feb 09
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0075
Microsoft Internet Explorer 7 does not properly handle errors during attempted access to deleted objects, which allows remote attackers to execute arbitrary code via a crafted HTML document, related to CFunctionPointer and the appending of document objects, aka "Uninitialized Memory Corruption Vulnerability."
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4284
Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.
Thu, 12 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4283
CRLF injection vulnerability in the WebContainer component in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.1.x versions allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Thu, 12 Feb 09
galatolo_webmanager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6108
Cross-site scripting (XSS) vulnerability in result.php in Galatolo WebManager (GWM) 1.0 allows remote attackers to inject arbitrary web script or HTML via the key parameter.
Thu, 12 Feb 09
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6107
The (1) sys32_mremap function in arch/sparc64/kernel/sys_sparc32.c, the (2) sparc_mmap_check function in arch/sparc/kernel/sys_sparc.c, and the (3) sparc64_mmap_check function in arch/sparc64/kernel/sys_sparc.c, in the Linux kernel before 2.6.25.4, omit some virtual-address range (aka span) checks when the mremap MREMAP_FIXED bit is not set, which allows local users to cause a denial of service (panic) via unspecified mremap calls, a related issue to CVE-2008-2137.
Thu, 12 Feb 09
workplace_for_business_controls_and_reporting, workplace_web_content_management
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6106
Cross-site request forgery (CSRF) vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x has unknown impact and remote attack vectors. NOTE: some of these details are obtained from third party information.
Thu, 12 Feb 09
workplace_for_business_controls_and_reporting, workplace_web_content_management
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6105
Cross-site scripting (XSS) vulnerability in IBM Workplace for Business Controls and Reporting 2.x and IBM Workplace Web Content Management 6.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information.
Thu, 12 Feb 09
a4desk_flash_event_calendar
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6104
SQL injection vulnerability in A4Desk PHP Event Calendar allows remote attackers to execute arbitrary SQL commands via the eventid parameter to admin/index.php.
Thu, 12 Feb 09
a4desk_flash_event_calendar
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6103
PHP remote file inclusion vulnerability in index.php in A4Desk Event Calendar, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the v parameter.
Thu, 12 Feb 09
link_trader_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6102
SQL injection vulnerability in ratelink.php in Link Trader Script allows remote attackers to execute arbitrary SQL commands via the lnkid parameter.
Thu, 12 Feb 09
adult_banner_exchange_website
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6101
SQL injection vulnerability in click.php in Adult Banner Exchange Website allows remote attackers to execute arbitrary SQL commands via the targetid parameter.
Thu, 12 Feb 09
discussion_forum_2k
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6100
Multiple SQL injection vulnerabilities in Discussion Forums 2k 3.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) CatID parameter to (a) RSS1.php and (b) RSS2.php in misc/; and the (2) SubID parameter to (c) misc/RSS5.php.
Wed, 11 Feb 09
rportal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6099
PHP remote file inclusion vulnerability in index.php in RPortal 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the file_op parameter.
Wed, 11 Feb 09
fulltext_search_cgi
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0469
Unspecified vulnerability in futomi's CGI Cafe Fulltext search CGI 1.1.2 allows remote attackers to gain administrative privileges via unknown vectors.
Wed, 11 Feb 09
profense_web_application_firewall
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0468
Multiple cross-site request forgery (CSRF) vulnerabilities in ajax.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allow remote attackers to (1) shutdown the server, (2) send ping packets, (3) enable network services, (4) configure a proxy server, and (5) modify other settings as administrators via parameters in the query string.
Wed, 11 Feb 09
profense_web_application_firewall
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0467
Cross-site scripting (XSS) vulnerability in proxy.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allows remote attackers to inject arbitrary web script or HTML via the proxy parameter in a deny_log manage action.
Wed, 11 Feb 09
vivvo
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0466
Cross-site scripting (XSS) vulnerability in Vivvo CMS before 4.1.1 allows remote attackers to inject arbitrary web script or HTML via a URI that triggers a 404 Page Not Found response.
Wed, 11 Feb 09
CVE-2009-0465 (all_in_the_box.ocx)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0465
The SaveDoc method in the All_In_The_Box.AllBox ActiveX control in ALL_IN_THE_BOX.OCX in Synactis ALL In-The-Box ActiveX 3 allows remote attackers to create and overwrite arbitrary files via an argument ending in a '\0' character, which bypasses the intended .box filename extension, as demonstrated by a C:\boot.ini\0 argument.
Wed, 11 Feb 09
gbook
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0464
PHP remote file inclusion vulnerability in includes/header.php in Groone GBook 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter.
Wed, 11 Feb 09
glinks
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0463
PHP remote file inclusion vulnerability in includes/header.php in Groone GLinks 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter.
Wed, 11 Feb 09
clickcart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0462
Multiple SQL injection vulnerabilities in customer_login_check.asp in ClickTech ClickCart 6.0 allow remote attackers to execute arbitrary SQL commands via (1) the txtEmail parameter (aka E-MAIL field) or (2) the txtPassword parameter (aka password field) to customer_login.asp. NOTE: some of these details are obtained from third party information.
Wed, 11 Feb 09
password_protect
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0461
Whole Hog Password Protect: Enhanced 1.x allows remote attackers to bypass authentication and obtain administrative access via an integer value in the adminid cookie.
Wed, 11 Feb 09
ware_support
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0460
Whole Hog Ware Support 1.x allows remote attackers to bypass authentication and obtain administrative access via an integer value in the adminid cookie.
Wed, 11 Feb 09
password_protect
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0459
Multiple SQL injection vulnerabilities in admin/login_submit.php in Whole Hog Password Protect: Enhanced 1.x allow remote attackers to execute arbitrary SQL commands via (1) the uid parameter (aka Username field) or (2) the pwd parameter (aka Password field). NOTE: some of these details are obtained from third party information.
Wed, 11 Feb 09
ware_support
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0458
Multiple SQL injection vulnerabilities in admin/login_submit.php in Whole Hog Ware Support 1.x allow remote attackers to execute arbitrary SQL commands via (1) the uid parameter (aka Username field) or (2) the pwd parameter (aka Password field). NOTE: some of these details are obtained from third party information.
Wed, 11 Feb 09
aja_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0457
Multiple directory traversal vulnerabilities in AJA Portal 1.2 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the currentlang parameter to admin/case.php in the (1) Contact_Plus and (2) Reviews modules, and (3) the module_name parameter to admin/includes/FANCYNLOptions.php in the Fancy_NewsLetter module.
Wed, 11 Feb 09
sourdough
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0456
PHP remote file inclusion vulnerability in examples/example_clientside_javascript.php in patForms, as used in Sourdough 0.3.5, allows remote attackers to execute arbitrary PHP code via a URL in the neededFiles[patForms] parameter.
Wed, 11 Feb 09
online_notebook_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0454
Multiple SQL injection vulnerabilities in DMXReady Online Notebook Manager 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field. NOTE: some third parties report inability to verify this issue.
Wed, 11 Feb 09
online_grades
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0453
Online Grades 3.2.4 allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.
Wed, 11 Feb 09
online_grades
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0452
Multiple SQL injection vulnerabilities in parents/login.php in Online Grades 3.2.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) uname or (2) pass parameter.
Wed, 11 Feb 09
skalinks
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0451
SQL injection vulnerability in Skalfa SkaLinks 1.5 allows remote attackers to execute arbitrary SQL commands via the Admin name field to the default URI under admin/.
Wed, 11 Feb 09
hdtv_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0450
Stack-based buffer overflow in BlazeVideo HDTV Player 3.5 and earlier allows remote attackers to execute arbitrary code via a long string in a playlist (aka .plf) file.
Wed, 11 Feb 09
kaspersky_anti-virus
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0449
Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations 6.0 and Anti-Virus 2008 allows local users to gain privileges via an IOCTL 0x80052110 call.
Wed, 11 Feb 09
syntax_desktop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0448
Directory traversal vulnerability in admin/modules/aa/preview.php in Syntax Desktop 2.7 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the synTarget parameter.
Wed, 11 Feb 09
mydesign_sayac
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0447
Multiple SQL injection vulnerabilities in default.asp in MyDesign Sayac 2.0 allow remote attackers to execute arbitrary SQL commands via (1) the user parameter (aka UserName field) or (2) the pass parameter (aka Pass field) to (a) admin/admin.asp or (b) the default URI under admin/. NOTE: some of these details are obtained from third party information.
Wed, 11 Feb 09
webalbum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0446
SQL injection vulnerability in photo.php in WEBalbum 2.4b allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 11 Feb 09
gallery_builder
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0445
SQL injection vulnerability in index.php in Dreampics Gallery Builder allows remote attackers to execute arbitrary SQL commands via the exhibition_id parameter in a gallery.viewPhotos action.
Wed, 11 Feb 09
grboard
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0444
Multiple PHP remote file inclusion vulnerabilities in GRBoard 1.8, when register_globals is enabled and magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) theme parameter to (a) 179_squarebox_pds_list/view.php, (b) 179_squarebox_minishop_expand/view.php, (c) 179_squarebox_gallery_list_pds/view.php, (d) 179_squarebox_gallery_list/view.php, (e) 179_squarebox_gallery/view.php, (f) 179_squarebox_board_swfupload/view.php, (g) 179_squarebox_board...
Wed, 11 Feb 09
elecard_avc_hd_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0443
Stack-based buffer overflow in Elecard AVC HD PLAYER 5.5.90116 allows remote attackers to execute arbitrary code via an M3U file containing a long string in a URL.
Wed, 11 Feb 09
phpbbbook
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0442
Directory traversal vulnerability in bbcode.php in PHPbbBook 1.3 and 1.3h allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the l parameter.
Wed, 11 Feb 09
technote
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0441
PHP remote file inclusion vulnerability in skin_shop/standard/2_view_body/body_default.php in Technote 7.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the shop_this_skin_path parameter, a different vector than CVE-2008-4138.
Wed, 11 Feb 09
agavi
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0417
Cross-site scripting (XSS) vulnerability in the AgaviWebRouting::gen(null) method in Agavi 0.11 before 0.11.6 and 1.0 before 1.0.0 beta 8 allows remote attackers to inject arbitrary web script or HTML via a crafted URL with certain characters that are not properly handled by web browsers that do not strictly follow RFC 3986, such as Internet Explorer 6 and 7.
Wed, 11 Feb 09
storagecrypt
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6073
StorageCrypt 2.0.1 does not properly encrypt disks, which allows local users to obtain sensitive information via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 11 Feb 09
graphicsmagick
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6072
Multiple unspecified vulnerabilities in GraphicsMagick before 1.1.14, and 1.2.x before 1.2.3, allow remote attackers to cause a denial of service (crash) via unspecified vectors in (1) XCF and (2) CINEON images.
Wed, 11 Feb 09
graphicsmagick
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6071
Heap-based buffer overflow in the DecodeImage function in coders/pict.c in GraphicsMagick before 1.1.14, and 1.2.x before 1.2.3, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted PICT image. NOTE: some of these details are obtained from third party information.
Wed, 11 Feb 09
graphicsmagick
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6070
Multiple heap-based buffer underflows in the ReadPALMImage function in coders/palm.c in GraphicsMagick before 1.2.3 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted PALM image, a different vulnerability than CVE-2007-0770. NOTE: some of these details are obtained from third party information.
Wed, 11 Feb 09
echat_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6069
SQL injection vulnerability in e107chat.php in the eChat plugin 4.2 for e107, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the nick parameter.
Wed, 11 Feb 09
joomladate
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6068
SQL injection vulnerability in the JoomlaDate (com_joomladate) component 1.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the user parameter in a viewProfile action to index.php.
Wed, 11 Feb 09
moodle, snoopy
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0502
Cross-site scripting (XSS) vulnerability in blocks/html/block_html.php in Snoopy 1.2.3, as used in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4, allows remote attackers to inject arbitrary web script or HTML via an HTML block, which is not properly handled when the "Login as" feature is used to visit a MyMoodle or Blog page.
Wed, 11 Feb 09
moodle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0501
Unspecified vulnerability in the Calendar export feature in Moodle 1.8 before 1.8.8 and 1.9 before 1.9.4 allows attackers to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors.
Wed, 11 Feb 09
moodle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0500
Cross-site scripting (XSS) vulnerability in course/lib.php in Moodle 1.6 before 1.6.9, 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to inject arbitrary web script or HTML via crafted log table information that is not properly handled when it is displayed in a log report.
Wed, 11 Feb 09
moodle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0499
Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php.
Wed, 11 Feb 09
virtual_guestbook
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0498
Virtual GuestBook (vgbook) 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to guestbook.mdb.
Wed, 11 Feb 09
openfire
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0497
Directory traversal vulnerability in log.jsp in Ignite Realtime Openfire 3.6.2 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the log parameter.
Wed, 11 Feb 09
openfire
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0496
Multiple cross-site scripting (XSS) vulnerabilities in Ignite Realtime Openfire 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the (1) log parameter to (a) logviewer.jsp and (b) log.jsp; (2) search parameter to (c) group-summary.jsp; (3) username parameter to (d) user-properties.jsp; (4) logDir, (5) maxTotalSize, (6) maxFileSize, (7) maxDays, and (8) logTimeout parameters to (e) audit-policy.jsp; (9) propName parameter to (f) server-properties.jsp; and the (10) roomco...
Wed, 11 Feb 09
realtor_747
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0495
PHP remote file inclusion vulnerability in include/define.php in REALTOR 747 4.11 allows remote attackers to execute arbitrary PHP code via a URL in the INC_DIR parameter.
Wed, 11 Feb 09
com_portfol
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0494
SQL injection vulnerability in the Portfol (com_portfol) 1.2 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the vcatid parameter in a viewcategory action to index.php.
Wed, 11 Feb 09
CVE-2009-0493 (it!cms)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0493
SQL injection vulnerability in login.php in IT!CMS 2.1a and earlier allows remote attackers to execute arbitrary SQL commands via the Username.
Wed, 11 Feb 09
simpleircbot
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0492
Unspecified vulnerability in SimpleIrcBot before 1.0 Stable has unknown impact and attack vectors related to an "auth vulnerability."
Wed, 11 Feb 09
elecard_mpeg_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0491
Stack-based buffer overflow in Elecard MPEG Player 5.5 build 15884.081218 allows remote attackers to execute arbitrary code via a M3U file containing a long URL.
Wed, 11 Feb 09
audacity
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0490
Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string.
Wed, 11 Feb 09
wicd
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0489
The DBus configuration file for Wicd before 1.5.9 allows arbitrary users to own org.wicd.daemon, which allows local users to receive messages that were intended for the Wicd daemon, possibly including credentials.
Wed, 11 Feb 09
phorum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0488
Cross-site scripting (XSS) vulnerability in Phorum before 5.2.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Wed, 11 Feb 09
mahara
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0487
Cross-site scripting (XSS) vulnerability in Mahara before 1.0.9 allows remote attackers to inject arbitrary web script or HTML via a crafted forum post.
Wed, 11 Feb 09
bugzilla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6098
Bugzilla 3.2 before 3.2 RC2, 3.0 before 3.0.6, 2.22 before 2.22.6, 2.20 before 2.20.7, and other versions after 2.17.4 allows remote authenticated users to bypass moderation to approve and disapprove quips via a direct request to quips.cgi with the action parameter set to "approve."
Wed, 11 Feb 09
bugzilla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0486
Bugzilla 3.2.1, 3.0.7, and 3.3.2, when running under mod_perl, calls the srand function at startup time, which causes Apache children to have the same seed and produce insufficiently random numbers for random tokens, which allows remote attackers to bypass cross-site request forgery (CSRF) protection mechanisms and conduct unauthorized activities as other users.
Wed, 11 Feb 09
bugzilla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0485
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.
Wed, 11 Feb 09
bugzilla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0484
Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag to buglist.cgi.
Wed, 11 Feb 09
bugzilla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0483
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.22 before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete keywords and user preferences via a link or IMG tag to (1) editkeywords.cgi or (2) userprefs.cgi.
Wed, 11 Feb 09
bugzilla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0482
Cross-site request forgery (CSRF) vulnerability in Bugzilla before 3.2 before 3.2.1, 3.3 before 3.3.2, and other versions before 3.2 allows remote attackers to perform bug updating activities as other users via a link or IMG tag to process_bug.cgi.
Wed, 11 Feb 09
bugzilla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0481
Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote authenticated users to conduct cross-site scripting (XSS) and related attacks by uploading HTML and JavaScript attachments that are rendered by web browsers.
Wed, 11 Feb 09
wikyblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6097
Multiple cross-site scripting (XSS) vulnerabilities in WikyBlog before 1.7.1 allow remote attackers to inject arbitrary web script or HTML via the (1) key parameter to index.php/Special/Main/keywordSearch, (2) revNum parameter to index.php/Edit/Main/Home, (3) to parameter to index.php/Special/Main/WhatLinksHere, (4) user parameter to index.php/Special/Main/UserEdits, and (5) the PATH_INFO to index.php.
Wed, 11 Feb 09
netscreen_screenos
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6096
Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the (1) web interface login page or the (2) telnet login page.
Wed, 11 Feb 09
opennms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6095
Cross-site scripting (XSS) vulnerability in surveillanceView.htm in OpenNMS 1.5.94 allows remote attackers to inject arbitrary web script or HTML via the viewName parameter.
Wed, 11 Feb 09
celoxis
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6094
Cross-site scripting (XSS) vulnerability in user.do in Celoxis Technologies Celoxis allows remote attackers to inject arbitrary web script or HTML via the ni.smessage parameter.
Wed, 11 Feb 09
noname_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6093
SQL injection vulnerability in index.php in Noname CMS 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the (1) file_id parameter in a detailansicht action and the (2) kategorie parameter in a kategorien action.
Wed, 11 Feb 09
ranking-script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6092
phpscripts Ranking Script allows remote attackers to bypass authentication and gain administrative access by sending an admin=ja cookie.
Tue, 10 Feb 09
bmforum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6091
SQL injection vulnerability in plugins.php in BMForum 5.6, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the tagname parameter.
Tue, 10 Feb 09
opensolaris
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0480
The IP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_82, uses an improper arena when allocating minor numbers for sockets, which allows local users to cause a denial of service (32-bit application failure and login outage) by opening a large number of sockets.
Tue, 10 Feb 09
online_grades
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0479
Multiple SQL injection vulnerabilities in admin/admin_login.php in Online Grades 3.2.4 allow remote attackers to execute arbitrary SQL commands via the (1) uname or (2) pword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Tue, 10 Feb 09
squid
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0478
Squid 2.7 to 2.7.STABLE5, 3.0 to 3.0.STABLE12, and 3.1 to 3.1.0.4 allows remote attackers to cause a denial of service via an HTTP request with an invalid version number, which is not properly handled in (1) HttpMsg.c and (2) HttpStatusLine.c.
Tue, 10 Feb 09
e-terrahabitat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0214
Unspecified vulnerability in the WebFGServer application in AREVA e-terrahabitat 5.7 and earlier allows remote authenticated users to gain privileges via unknown vectors, aka PD32022.
Tue, 10 Feb 09
e-terrahabitat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0213
Unspecified vulnerability in the NETIO application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to cause a denial of service (system crash) via unknown vectors, aka PD32021.
Tue, 10 Feb 09
e-terrahabitat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0212
Unspecified vulnerability in the WebFGServer application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to cause a denial of service (system crash) via unknown vectors, aka PD32020.
Tue, 10 Feb 09
e-terrahabitat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0211
Unspecified vulnerability in the WebFGServer application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to cause a denial of service (system crash) via unknown vectors, aka PD32018.
Tue, 10 Feb 09
e-terrahabitat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0210
Buffer overflow in the MLF application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service (system crash) via unspecified vectors, aka PD28578.
Tue, 10 Feb 09
opensolaris
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0477
Unspecified vulnerability in the process (aka proc) filesystem in Sun OpenSolaris snv_85 through snv_100 allows local users to gain privileges via vectors related to the contract filesystem.
Tue, 10 Feb 09
CVE-2009-0476 (audio_dj_studio_for_.net, audio_sound_editer_for_.net, audio_sound_recorder_for_....)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0476
Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 and 7.11.2.7, as distributed in multiple MultiMedia Soft audio components for .NET, allows remote attackers to execute arbitrary code via a long string in a playlist (.pls) file, as originally reported for Euphonics Audio Player 1.0. NOTE: some of these details are obtained from third party information.
Tue, 10 Feb 09
realplayer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0376
A DLL file in RealNetworks RealPlayer 11 allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin.
Tue, 10 Feb 09
realplayer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0375
A DLL file in RealNetworks RealPlayer 11 allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.
Tue, 10 Feb 09
oncplus
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0206
Unspecified vulnerability in NFS in HP ONCplus B.11.31.05 and earlier for HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors.
Tue, 10 Feb 09
openview_network_node_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4562
Buffer overflow in the ovlaunch CGI program in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 on Windows allows remote attackers to execute arbitrary code via a crafted Host parameter. NOTE: this issue may be partially covered by CVE-2009-0205.
Tue, 10 Feb 09
openview_network_node_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4560
HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to obtain sensitive information via (1) a crafted request to the nnmRptConfig.exe CGI program, which reveals the pathname of log directories; or (2) a crafted parameter in a request to the ovlaunch.exe CGI program, which reveals configuration details. NOTE: this issue may be partially covered by CVE-2009-0205.
Tue, 10 Feb 09
openview_network_node_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4559
HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the (1) webappmon.exe or (2) OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205.
Tue, 10 Feb 09
CVE-2009-0474 (controllogix_1756-enbt/a_ethernet/_ip_bridge)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0474
The web interface in the Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Module allows remote attackers to obtain "internal web page information" and "internal information about the module" via unspecified vectors. NOTE: this may overlap CVE-2002-1603.
Tue, 10 Feb 09
CVE-2009-0473 (controllogix_1756-enbt/a_ethernet/_ip_bridge)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0473
Open redirect vulnerability in the web interface in the Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Module allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Tue, 10 Feb 09
CVE-2009-0472 (controllogix_1756-enbt/a_ethernet/_ip_bridge)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0472
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in the Rockwell Automation ControlLogix 1756-ENBT/A EtherNet/IP Bridge Module allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Tue, 10 Feb 09
ios
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0471
Cross-site request forgery (CSRF) vulnerability in the HTTP server in Cisco IOS 12.4(23) allows remote attackers to execute arbitrary commands, as demonstrated by executing the hostname command with a level/15/configure/-/hostname request.
Tue, 10 Feb 09
ios
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0470
Multiple cross-site scripting (XSS) vulnerabilities in the HTTP server in Cisco IOS 12.4(23) allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) level/15/exec/-/ or (2) exec/, a different vulnerability than CVE-2008-3821.
Tue, 10 Feb 09
mini_hosting_panel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6090
Directory traversal vulnerability in members.php in ScriptsEz Mini Hosting Panel allows remote attackers to read arbitrary local files via a .. (dot dot) in the dir parameter in a view action.
Tue, 10 Feb 09
easy_image_downloader
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6089
Directory traversal vulnerability in main.php in ScriptsEz Easy Image Downloader allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter in a download action.
Tue, 10 Feb 09
com_joomtracker
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6088
SQL injection vulnerability in the Joomtracker (com_joomtracker) 1.01 module for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a tordetails action to index.php.
Tue, 10 Feb 09
camera_life
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6087
Cross-site scripting (XSS) vulnerability in topic.php in Camera Life 2.6.2b4 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
Tue, 10 Feb 09
camera_life
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6086
SQL injection vulnerability in album.php in Camera Life 2.6.2b4 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3355.
Tue, 10 Feb 09
goahead_webserver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-1569
GoAhead WebServer before 2.1.5 on Windows 95, 98, and ME allows remote attackers to cause a denial of service (daemon crash) via an HTTP request with a (1) con, (2) nul, (3) clock$, or (4) config$ device name in a path component, different vectors than CVE-2001-0385.
Tue, 10 Feb 09
goahead_webserver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-1568
GoAhead WebServer before 2.1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an invalid URL, related to the websSafeUrl function.
Tue, 10 Feb 09
goahead_webserver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-2431
Unspecified vulnerability in GoAhead WebServer before 2.1.4 allows remote attackers to cause "incorrect behavior" via unknown "malicious code," related to incorrect use of the socketInputBuffered function by sockGen.c.
Sat, 7 Feb 09
goahead_webserver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-2430
GoAhead WebServer before 2.1.1 allows remote attackers to cause a denial of service (CPU consumption) by performing a socket disconnect to terminate a request before it has been fully processed by the server.
Sat, 7 Feb 09
goahead_webserver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-2429
webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request that contains a negative integer in the Content-Length header.
Sat, 7 Feb 09
goahead_webserver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-2428
webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length header but no body data.
Sat, 7 Feb 09
goahead_webserver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-2427
The security handler in GoAhead WebServer before 2.1.1 allows remote attackers to bypass authentication and obtain access to protected web content via "an extra slash in a URL," a different vulnerability than CVE-2002-1603.
Sat, 7 Feb 09
CVE-2008-6085 (f-secure_anti-virus, f-secure_anti-virus_for_citrix_servers, f-secure_anti-virus_...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6085
Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow.
Sat, 7 Feb 09
iamma_simple_gallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6084
Unrestricted file upload vulnerability in pages/download.php in Iamma Simple Gallery 1.0 and 2.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in the uploads directory .
Sat, 7 Feb 09
txtshop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6083
Directory traversal vulnerability in header.php in TXTshop beta 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Sat, 7 Feb 09
titan_ftp_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6082
Titan FTP Server 6.26 build 630 allows remote attackers to cause a denial of service (CPU consumption) via the SITE WHO command.
Sat, 7 Feb 09
simple_customer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6081
SQL injection vulnerability in contact.php in Simple Customer 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Sat, 7 Feb 09
com_ionfiles
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6080
Directory traversal vulnerability in download.php in the ionFiles (com_ionfiles) 4.4.2 component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
Sat, 7 Feb 09
imlib2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6079
Multiple unspecified vulnerabilities in imlib2 before 1.4.2 have unknown impact and attack vectors.
Sat, 7 Feb 09
com_privmsg
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6078
SQL injection vulnerability in open.php in the Private Messaging (com_privmsg) component for Limbo CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a pms action to index.php.
Sat, 7 Feb 09
loudblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6077
SQL injection vulnerability in loudblog/ajax.php in LoudBlog 0.8.0a and earlier allows remote authenticated users to execute arbitrary SQL commands via the colpick parameter in a singleread action.
Sat, 7 Feb 09
com_dailymessage
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6076
SQL injection vulnerability in the Daily Message (com_dailymessage) 1.0.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
Sat, 7 Feb 09
bahar_download_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6075
SQL injection vulnerability in aspkat.asp in Bahar Download Script 2.0 allows remote attackers to execute arbitrary SQL commands via the kid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 7 Feb 09
phpcrs
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6074
Directory traversal vulnerability in frame.php in phpcrs 2.06 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the importFunction parameter.
Fri, 6 Feb 09
e-shop_shopping_cart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6067
SQL injection vulnerability in search_results.php in E-Shop Shopping Cart (aka E-Php Shopping Cart) allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 6 Feb 09
CVE-2008-6066 (meet#web)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6066
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 6 Feb 09
database_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6065
Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the password directory, and then overwriting the password file through UTL_FILE operations, a related issue to CVE-2006-7141.
Fri, 6 Feb 09
domphp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6064
Multiple SQL injection vulnerabilities in DomPHP 0.81 allow remote attackers to execute arbitrary SQL commands via the cat parameter to agenda/index.php, and unspecified other vectors.
Fri, 6 Feb 09
word
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6063
Microsoft Word 2007, when the "Save as PDF" add-on is enabled, places an absolute pathname in the Subject field during an "Email as PDF" operation, which allows remote attackers to obtain sensitive information such as the sender's account name and a Temporary Internet Files subdirectory name.
Fri, 6 Feb 09
dreamweaver
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6062
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by Adobe Dreamweaver, when the Insert Flash Video feature is used, allows remote attackers to inject arbitrary web script or HTML via an asfunction: URI in the skinName parameter. NOTE: this may overlap CVE-2007-6242, CVE-2007-6244, or CVE-2007-6637.
Fri, 6 Feb 09
camtasia_studio
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6061
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter.
Fri, 6 Feb 09
fusion_charts
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6060
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter.
Fri, 6 Feb 09
linkspro
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0431
SQL injection vulnerability in Default.asp in LinksPro Standard Edition allows remote attackers to execute arbitrary SQL commands via the OrderDirection parameter.
Fri, 6 Feb 09
active_bids
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0430
Multiple cross-site scripting (XSS) vulnerabilities in Active Bids allow remote attackers to inject arbitrary web script or HTML via the (1) search parameter to search.asp and the (2) URL parameter to tellafriend.asp.
Fri, 6 Feb 09
active_bids
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0429
Multiple SQL injection vulnerabilities in Active Bids allow remote attackers to execute arbitrary SQL commands via the (1) search parameter to search.asp, (2) SortDir parameter to auctionsended.asp, and the (3) catid parameter to wishlist.php.
Fri, 6 Feb 09
secure_document_library
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0428
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Secure Document Library 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Fri, 6 Feb 09
directory_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0427
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Member Directory Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Fri, 6 Feb 09
classified_listings_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0426
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Fri, 6 Feb 09
blue_eye_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0425
SQL injection vulnerability in index.php in Blue Eye CMS 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the clanek parameter.
Fri, 6 Feb 09
an_guestbook
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0424
Cross-site scripting (XSS) vulnerability in sign1.php in AN Guestbook (ANG) before 0.7.7 allows remote attackers to inject arbitrary web script or HTML via the country parameter, which is not properly handled in (1) administrator/manage.php or (2) administrator/trash.php. NOTE: some of these details are obtained from third party information.
Fri, 6 Feb 09
php_photo_album
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0423
Directory traversal vulnerability in index.php in Php Photo Album (PHPPA) 0.8 BETA allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the preview parameter.
Fri, 6 Feb 09
phplist
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0422
Dynamic variable evaluation vulnerability in lists/admin.php in phpList 2.10.8 and earlier, when register_globals is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the _SERVER[ConfigFile] parameter to admin/index.php.
Fri, 6 Feb 09
com_eventing
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0421
SQL injection vulnerability in the Eventing (com_eventing) 1.6.x component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
Fri, 6 Feb 09
rd-autos
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0420
SQL injection vulnerability in the RD-Autos (com_rdautos) 1.5.5 Stable component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
Fri, 6 Feb 09
CVE-2009-0062 (catalyst_3750_series_integrated_wireless_lan_controller, catalyst_6500_wireless_s...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0062
Unspecified vulnerability in the Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.2.173.0 allows remote authenticated users to gain privileges via unknown vectors, as demonstrated by escalation from the (1) Lobby Admin and (2) Local Management User privilege levels.
Fri, 6 Feb 09
CVE-2009-0061 (4400_wireless_lan_controller, catalyst_3750_series_integrated_wireless_lan_contro...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0061
Unspecified vulnerability in the Wireless LAN Controller (WLC) TSEC driver in the Cisco 4400 WLC, Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.x before 5.1 allows remote attackers to cause a denial of service (device crash or hang) via unknown IP packets.
Fri, 6 Feb 09
CVE-2009-0059 (4400_wireless_lan_controller, catalyst_3750_series_integrated_wireless_lan_contro...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0059
The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.2.x before 5.2.157.0 allow remote attackers to cause a denial of service (device reload) via a web authentication (aka WebAuth) session that includes a malformed POST request to login.html.
Fri, 6 Feb 09
CVE-2009-0058 (4400_wireless_lan_controller, catalyst_3750_series_integrated_wireless_lan_contro...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0058
The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.x before 5.2 allow remote attackers to cause a denial of service (web authentication outage or device reload) via unspecified network traffic, as demonstrated by a vulnerability scanner.
Fri, 6 Feb 09
webkit
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6059
xml/XMLHttpRequest.cpp in WebCore in WebKit before r38566 does not properly restrict access from web pages to the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls, related to the HTTPOnly protection mechanism.
Fri, 6 Feb 09
syslserve
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6058
Syslserve 1.058 and earlier, and probably 1.059, allows remote attackers to cause a denial of service (hang) via a crafted UDP Syslog packet.
Fri, 6 Feb 09
CVE-2008-4419 (9200c_digital_sender, color_laserjet_4370mfp, color_laserjet_9500mfp, laserjet_24...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4419
Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color LaserJet 4730mfp before firmware 46.200.9; LaserJet 2410, LaserJet 2420, and LaserJet 2430 before firmware 20080819 SPCL112A; LaserJet 4250 and LaserJet 4350 before firmware 20080819 SPCL015A; and Laser...
Fri, 6 Feb 09
xml_core_services
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0419
Microsoft XML Core Services, as used in Microsoft Expression Web, Office, Internet Explorer 6 and 7, and other products, does not properly restrict access from web pages to Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls, related to the HTTPOnly protection mechanism. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2008-4033.
Fri, 6 Feb 09
hp-ux
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0418
The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity), read private network traffic, and possibly execute arbitrary code via a spoofed message that modifies the Forward Information Base (FIB), a related issue to CVE-2008-2476.
Fri, 6 Feb 09
tightvnc, ultravnc
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0388
Multiple integer signedness errors in (1) UltraVNC 1.0.2 and 1.0.5 and (2) TightVnc 1.3.9 allow remote VNC servers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code via a large length value in a message, related to the (a) ClientConnection::CheckBufferSize and (b) ClientConnection::CheckFileZipBufferSize functions in ClientConnection.cpp.
Fri, 6 Feb 09
firefox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0358
Mozilla Firefox 3.x before 3.0.6 does not properly implement the (1) no-store and (2) no-cache Cache-Control directives, which allows local users to obtain sensitive information by using the (a) back button or (b) history list of the victim's browser, as demonstrated by reading the response page of an https POST request.
Fri, 6 Feb 09
firefox, seamonkey
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0357
Mozilla Firefox before 3.0.6 and SeaMonkey before 1.1.15 do not properly restrict access from web pages to the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls, related to the HTTPOnly protection mechanism.
Fri, 6 Feb 09
firefox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0356
Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the (1) about:plugins and (2) about:config URIs from .desktop files, which allows user-assisted remote attackers to bypass the Same Origin Policy and execute arbitrary code with chrome privileges via vectors involving the URL field in a Desktop Entry section of a .desktop file, related to representation of about: URIs as jar:file:// URIs. NOTE: this issue exists because of an incomplete fix for CVE-2008-4582.
Fri, 6 Feb 09
firefox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0355
components/sessionstore/src/nsSessionStore.js in Mozilla Firefox before 3.0.6 does not block changes of INPUT elements to type="file" during tab restoration, which allows user-assisted remote attackers to read arbitrary files on a client machine via a crafted INPUT element.
Fri, 6 Feb 09
firefox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0354
Cross-domain vulnerability in js/src/jsobj.cpp in Mozilla Firefox 3.x before 3.0.6 allows remote attackers to bypass the Same Origin Policy, and access the properties of an arbitrary window and conduct cross-site scripting (XSS) attacks, via vectors involving a chrome XBL method and the window.eval function.
Fri, 6 Feb 09
firefox, seamonkey, thunderbird
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0353
Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the JavaScript engine.
Fri, 6 Feb 09
firefox, seamonkey, thunderbird
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0352
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the layout engine and destruction of arbitrary layout objects by the nsViewManager::Composite function.
Thu, 5 Feb 09
liberum_help_desk
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6057
Doug Luxem Liberum Help Desk 0.97.3 stores db/helpdesk2000.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.
Thu, 5 Feb 09
world_recipe
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6056
Multiple cross-site scripting (XSS) vulnerabilities in World Recipe 2.11 allow remote attackers to inject arbitrary web script or HTML via the (1) n parameter to emailrecipe.aspx, (2) id parameter to recipedetail.aspx, and the (3) catid parameter to validatefieldlength.aspx.
Thu, 5 Feb 09
pre_classified_listings
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6055
PreProjects Pre Classified Listings stores pclasp.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.
Thu, 5 Feb 09
pre_courier_and_cargo_business
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6054
PreProjects Pre Courier and Cargo Business stores dbcourior.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.
Thu, 5 Feb 09
pre_resume_submitter
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6053
PreProjects Pre Resume Submitter stores onlineresume.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.
Thu, 5 Feb 09
pre_e-learning_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6052
PreProjects Pre E-Learning Portal stores db_elearning.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.
Thu, 5 Feb 09
metacart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6051
MetaCart Free stores metacart.mdb under the web root with insufficient access control, which allows remote attackers to obtain usernames and passwords via a direct request.
Thu, 5 Feb 09
tech_article
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6050
SQL injection vulnerability in the Tech Articles (com_tech_article) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the item parameter to index.php.
Thu, 5 Feb 09
tinymce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6049
SQL injection vulnerability in index.php in TinyMCE 2.0.1 allows remote attackers to execute arbitrary SQL commands via the menuID parameter.
Thu, 5 Feb 09
tangocms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6048
Multiple cross-site request forgery (CSRF) vulnerabilities in TangoCMS before 2.2.0 allow remote attackers to perform unauthorized actions as administrators via unspecified vectors.
Thu, 5 Feb 09
adbnewssender
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6047
Cross-site scripting (XSS) vulnerability in ADbNewsSender before 1.5.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) subscribing and (2) unsubscribing.
Thu, 5 Feb 09
adbnewssender
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6046
SQL injection vulnerability in ADbNewsSender before 1.5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors in (1) opt_in_out.php.inc, (2) confirmation.php.inc, and (3) renewal.php.inc in mailinglist/.
Thu, 5 Feb 09
sblim-sfcb
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0416
The SSL certificate setup program (genSslCert.sh) in Standards Based Linux Instrumentation for Manageability (SBLIM) sblim-sfcb 1.3.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /var/tmp/key.pem, (2) /var/tmp/cert.pem, and (3) /var/tmp/ssl.cnf temporary files.
Thu, 5 Feb 09
trickle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0415
Untrusted search path vulnerability in trickle 1.07 allows local users to execute arbitrary code via a Trojan horse trickle-overload.so in the current working directory, which is referenced in the LD_PRELOAD path.
Thu, 5 Feb 09
tor
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0414
Unspecified vulnerability in Tor before 0.2.0.33 has unspecified impact and remote attack vectors that trigger heap corruption.
Thu, 5 Feb 09
roundcube_webmail
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0413
Cross-site scripting (XSS) vulnerability in RoundCube Webmail (roundcubemail) 0.2 stable allows remote attackers to inject arbitrary web script or HTML via the background attribute embedded in an HTML e-mail message.
Thu, 5 Feb 09
shopping_cart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0412
The ProcessLogin function in class.auth.php in Interspire Shopping Cart (ISC) 4.0.1 Ultimate edition allows remote attackers to bypass authentication and obtain administrative access by reusing the RememberToken cookie after a failed admin login attempt.
Thu, 5 Feb 09
chrome
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0411
Google Chrome before 1.0.154.46 does not properly restrict access from web pages to the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls and other web script.
Thu, 5 Feb 09
groupwise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0410
Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading to a buffer overflow.
Thu, 5 Feb 09
CVE-2009-0409 (max.blog)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0409
SQL injection vulnerability in offline_auth.php in Max.Blog 1.0.6 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter.
Thu, 5 Feb 09
oscommerce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0408
Cross-site request forgery (CSRF) vulnerability in osCommerce 2.2 RC 2a allows remote attackers to perform unauthorized actions as administrators via unspecified vectors.
Thu, 5 Feb 09
php-cms_project
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0407
SQL injection vulnerability in admin/login.php in PHP-CMS Project 1 allows remote attackers to execute arbitrary SQL commands via the username parameter.
Thu, 5 Feb 09
community_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0406
SQL injection vulnerability in index.php in Community CMS 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Thu, 5 Feb 09
smartsitecms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0405
SQL injection vulnerability in articles.php in smartSite CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the var parameter.
Thu, 5 Feb 09
htmlawed
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0404
Multiple cross-site scripting (XSS) vulnerabilities in Bioinformatics htmLawed 1.1.3 and 1.1.4 allow remote attackers to inject arbitrary web script or HTML via invalid Cascading Style Sheets (CSS) expressions in the style attribute, which is processed by Internet Explorer 7.
Thu, 5 Feb 09
chipmunk_blogger
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0403
SQL injection vulnerability in admin/authenticate.php in Chipmunk Blogger Script allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Thu, 5 Feb 09
domain_technologie_control
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0402
SQL injection vulnerability in client/new_account.php in Domain Technologie Control (DTC) before 0.29.16 allows remote attackers to execute arbitrary SQL commands via the (1) familyname, (2) christname, (3) company_name, (4) is_company, (5) email, (6) phone, (7) fax, (8) addr1, (9) addr2, (10) addr3, (11) zipcode, (12) city, (13) state, (14) country, and (15) vat_num parameters.
Thu, 5 Feb 09
e-php_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0401
SQL injection vulnerability in browsecats.php in E-Php CMS allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Thu, 5 Feb 09
socialengine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0400
SQL injection vulnerability in blog.php in SocialEngine 3.06 trial allows remote attackers to execute arbitrary SQL commands via the category_id parameter.
Thu, 5 Feb 09
chipmunk_blogger
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0399
Chipmunk Blogger Script allows remote attackers to gain administrator privileges via a direct request to admin/reguser.php. NOTE: this is only a vulnerability when the administrator does not properly follow installation directions.
Thu, 5 Feb 09
chrome
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0276
Cross-domain vulnerability in the V8 JavaScript engine in Google Chrome before 1.0.154.46 allows remote attackers to bypass the Same Origin Policy via a crafted script that accesses another frame and reads its full URL and possibly other sensitive information, or modifies the URL of this frame.
Wed, 4 Feb 09
groupwise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0274
Unspecified vulnerability in WebAccess in Novell GroupWise 6.5, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 might allow remote attackers to obtain sensitive information via a crafted URL, related to conversion of POST requests to GET requests.
Wed, 4 Feb 09
free_download_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0184
Multiple buffer overflows in the torrent parsing implementation in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allow remote attackers to execute arbitrary code via (1) a long file name within a torrent file, (2) a long tracker URL in a torrent file, or (3) a long comment in a torrent file.
Wed, 4 Feb 09
free_download_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0183
Stack-based buffer overflow in Remote Control Server in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request.
Wed, 4 Feb 09
esx, esxi
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4914
Unspecified vulnerability in VMware ESXi 3.5 before ESXe350-200901401-I-SG and ESX 3.5 before ESX350-200901401-SG allows local administrators to cause a denial of service (host crash) via a snapshot with a malformed VMDK delta disk.
Wed, 4 Feb 09
plug-ins
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0398
Array index error in the gst_qtp_trak_handler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins (aka gstreamer-plugins) 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file.
Wed, 4 Feb 09
good_plug-ins
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0397
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11, and GStreamer Plug-ins (aka gstreamer-plugins) 0.8.5, might allow remote attackers to execute arbitrary code via crafted Time-to-sample (aka stts) atom data in a malformed QuickTime media .mov file.
Wed, 4 Feb 09
xt-commerce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6045
Session fixation vulnerability in xt:Commerce 3.0.4 and earlier allows remote attackers to hijack web sessions by setting the XTCsid parameter.
Wed, 4 Feb 09
xt-commerce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6044
Cross-site scripting (XSS) vulnerability in advanced_search_result.php in xt:Commerce 3.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.
Wed, 4 Feb 09
php_pro_bid
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6043
Multiple SQL injection vulnerabilities in PHP Pro Bid (PPB) 6.04 allow remote attackers to execute arbitrary SQL commands via the (1) order_field and (2) order_type parameters to categories.php and unspecified other components. NOTE: some of these details are obtained from third party information.
Wed, 4 Feb 09
real_estate_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6042
SQL injection vulnerability in the re_search module in NetArtMedia Real Estate Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the ad parameter to index.php.
Wed, 4 Feb 09
dataspade
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6041
Multiple cross-site scripting (XSS) vulnerabilities in Index.asp in Dataspade 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) ViewName, (2) TableName, (3) OrderBy, and (4) FilterField parameters.
Wed, 4 Feb 09
arcadem_pro
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6040
SQL injection vulnerability in index.php in Arcadem Pro 2.700 through 2.802 allows remote attackers to execute arbitrary SQL commands via the articlecat parameter, probably related to includes/articleblock.php.
Wed, 4 Feb 09
bluepage_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6039
Session fixation vulnerability in BLUEPAGE CMS 2.5 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Wed, 4 Feb 09
mapcal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6038
SQL injection vulnerability in index.php in MapCal 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter in an editevent action, possibly related to dsp_editevent.php.
Wed, 4 Feb 09
availscript_article_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6037
SQL injection vulnerability in view.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the v parameter.
Wed, 4 Feb 09
basebuilder
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6036
PHP remote file inclusion vulnerability in main.inc.php in BaseBuilder 2.0.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the mj_config[src_path] parameter.
Wed, 4 Feb 09
achievo
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6035
Cross-site scripting (XSS) vulnerability in dispatch.php in Achievo 1.3.2-STABLE allows remote attackers to inject arbitrary web script or HTML via the atknodetype parameter.
Wed, 4 Feb 09
achievo
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6034
Cross-site scripting (XSS) vulnerability in dispatch.php in Achievo 1.3.2 allows remote attackers to inject arbitrary web script or HTML via the atkaction parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 4 Feb 09
wsn_links
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6033
SQL injection vulnerability in comments.php in WSN Links 2.20 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 4 Feb 09
links
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6032
SQL injection vulnerability in comments.php in WSN Links Free 4.0.34P allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 4 Feb 09
wsn_links
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6031
SQL injection vulnerability in vote.php in WSN Links 2.22 and 2.23 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 4 Feb 09
jobs_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6030
Multiple SQL injection vulnerabilities in NetArtMedia Jobs Portal 1.3 allow remote attackers to execute arbitrary SQL commands via (1) the job parameter to index.php in the search module or (2) the news_id parameter to index.php.
Wed, 4 Feb 09
buzzywall
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6029
SQL injection vulnerability in search.php in BuzzyWall 1.3.1 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the search parameter.
Wed, 4 Feb 09
fez
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6028
SQL injection vulnerability in list.php in University of Queensland Library Fez 1.3 and 2.0 RC1 allows remote attackers to execute arbitrary SQL commands via the parent_id parameter in a subject action.
Wed, 4 Feb 09
bluepage_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6027
Multiple cross-site scripting (XSS) vulnerabilities in index.php in BLUEPAGE CMS 2.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) whl, (2) var_1, and (3) search parameters.
Wed, 4 Feb 09
bluecube_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6026
SQL injection vulnerability in tienda.php in BlueCUBE CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 4 Feb 09
openelec
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6025
Directory traversal vulnerability in scr/form.php in openElec 3.01 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the obj parameter.
Wed, 4 Feb 09
k530i, k610i, k618i, k660i, k810i, w660i, w880i, w910i, z610i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0396
The Sony Ericsson W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, and K530i phones allow remote attackers to cause a denial of service (device reboot or hang-up) via a malformed WAP Push packet to (1) SMS or (2) UDP port 2948.
Wed, 4 Feb 09
car_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0395
SQL injection vulnerability in the login feature in NetArt Media Car Portal 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Wed, 4 Feb 09
ple_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0394
SQL injection vulnerability in login.php in Pre Lecture Exercises (PLEs) CMS 1.0 beta 4.2 allows remote attackers to execute arbitrary SQL commands via the school parameter.
Wed, 4 Feb 09
cpei300
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0393
Cross-site scripting (XSS) vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to inject arbitrary web script or HTML via the page parameter.
Wed, 4 Feb 09
cpei300
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0392
Directory traversal vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the page parameter.
Wed, 4 Feb 09
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0391
Unspecified vulnerability in IBM WebSphere Application Server (WAS) 6.0.1 on z/OS allows attackers to read arbitrary files via unknown vectors.
Wed, 4 Feb 09
elastic_computing_platform
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0390
Argument injection vulnerability in Enomaly Elastic Computing Platform (ECP), formerly Enomalism, before 2.1.1 allows local users to send signals to arbitrary processes by populating the /tmp/enomalism2.pid file with command-line arguments for the kill program.
Wed, 4 Feb 09
groupwise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0273
Multiple cross-site scripting (XSS) vulnerabilities in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allow remote attackers to inject arbitrary web script or HTML via the (1) User.id and (2) Library.queryText parameters to gw/webacc, and other vectors involving (3) HTML e-mail and (4) HTML attachments.
Wed, 4 Feb 09
groupwise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0272
Cross-site request forgery (CSRF) vulnerability in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allows remote attackers to insert e-mail forwarding rules, and modify unspecified other configuration settings, as arbitrary users via unknown vectors.
Wed, 4 Feb 09
elastic_computing_platform
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4990
Enomaly Elastic Computing Platform (ECP), formerly Enomalism, before 2.1.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/enomalism2.pid temporary file.
Wed, 4 Feb 09
web_on_windows_activex
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0389
Multiple insecure method vulnerabilities in the Web On Windows (WOW) ActiveX control in WOW ActiveX 2 allow remote attackers to (1) create and overwrite arbitrary files via the WriteIniFileString method, (2) execute arbitrary programs via the ShellExecute method, (3) read from the registry via unspecified vectors, and (4) write to the registry via unspecified vectors. NOTE: vectors 1 and 2 can be used together to execute arbitrary code.
Wed, 4 Feb 09
opensolaris
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6024
Unspecified vulnerability in the NFSv4 client module in the kernel on Sun Solaris 10 and OpenSolaris before snv_37, when automountd is used, allows user-assisted remote attackers to cause a denial of service (unresponsive NFS filesystems) via unknown vectors.
Wed, 4 Feb 09
xnova
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6023
PHP remote file inclusion vulnerability in includes/todofleetcontrol.php in a newer version of Xnova, possibly 0.8 sp1, allows remote attackers to execute arbitrary PHP code via a URL in the xnova_root_path parameter.
Wed, 4 Feb 09
xnova
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6022
PHP remote file inclusion vulnerability in includes/todofleetcontrol.php in an older version of Xnova, possibly 0.8 sp1, allows remote attackers to execute arbitrary PHP code via a URL in the ugamela_root_path parameter.
Wed, 4 Feb 09
reflection_for_secure_it
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6021
Multiple unspecified vulnerabilities in Attachmate Reflection for Secure IT UNIX Client and Server before 7.0 SP1 have unknown impact and attack vectors, aka "security vulnerabilities found by 3rd party analysis."
Wed, 4 Feb 09
views
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6020
SQL injection vulnerability in the Views module 6.x before 6.x-2.2 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to "an exposed filter on CCK text fields."
Wed, 4 Feb 09
do-cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6019
SQL injection vulnerability in index.php in EACOMM DO-CMS 3.0 allows remote attackers to execute arbitrary SQL commands via the p parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 4 Feb 09
myphpsite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6018
Directory traversal vulnerability in index.php in MyPHPSite, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the mod parameter.
Wed, 4 Feb 09
i-rater_basic
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6017
SQL injection vulnerability in messages.php in I-Rater Basic allows remote attackers to execute arbitrary SQL commands via the idp parameter.
Tue, 3 Feb 09
good_plug-ins
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0387
Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to "mark keyframes."
Tue, 3 Feb 09
good_plug-ins
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0386
Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 might allow remote attackers to execute arbitrary code via crafted Composition Time To Sample (ctts) atom data in a malformed QuickTime media .mov file.
Tue, 3 Feb 09
ffmpeg
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0385
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.
Tue, 3 Feb 09
ownrs
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0384
SQL injection vulnerability in autor.php in OwnRS CMS 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Tue, 3 Feb 09
CVE-2009-0383 (max.blog)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0383
delete.php in Max.Blog 1.0.6 does not properly restrict access, which allows remote attackers to delete arbitrary blog posts via a direct request.
Tue, 3 Feb 09
internationalization
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0382
Unspecified vulnerability in Internationalization (i18n) Translation 5.x before 5.x-2.5, a module for Drupal, allows remote attackers with "translate node" permissions to bypass intended access restrictions and read unpublished nodes via unspecified vectors.
Tue, 3 Feb 09
ecommerce_shopping_cart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0381
SQL injection vulnerability in the BazaarBuilder Ecommerce Shopping Cart (com_prod) 5.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter in a products action to index.php.
Tue, 3 Feb 09
sobi2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0380
** DISPUTED ** SQL injection vulnerability in the Sigsiu Online Business Index 2 (SOBI2, com_sobi2) RC 2.8.2 component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the bid parameter in a showbiz action to index.php, a different vector than CVE-2008-0607. NOTE: CVE disputes this issue, since neither "showbiz" nor "bid" appears in the source code for SOBI2.
Tue, 3 Feb 09
com_pcchess
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0379
SQL injection vulnerability in the Prince Clan Chess Club (com_pcchess) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the game_id parameter in a showgame action to index.php, a different vector than CVE-2008-0761.
Tue, 3 Feb 09
com_beamospetition
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0378
Cross-site scripting (XSS) vulnerability in index.php in the beamospetition (com_beamospetition) 1.0.12 component for Joomla! allows remote attackers to inject arbitrary web script or HTML via the pet parameter in a sign action.
Tue, 3 Feb 09
com_beamospetition
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0377
SQL injection vulnerability in the beamospetition (com_beamospetition) 1.0.12 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the mpid parameter in a sign action to index.php, a different vector than CVE-2008-3132.
Tue, 3 Feb 09
chrome
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0374
** DISPUTED ** Google Chrome 1.0.154.43 allows remote attackers to trick a user into visiting an arbitrary URL via an onclick action that moves a crafted element to the current mouse position, related to a "Clickjacking" vulnerability. NOTE: a third party disputes the relevance of this issue, stating that "every sufficiently featured browser is and likely will remain susceptible to the behavior known as clickjacking," and adding that the exploit code "is not a valid demonstration of the iss...
Tue, 3 Feb 09
flash_magazine_deluxe
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0373
SQL injection vulnerability in the ElearningForce Flash Magazine Deluxe (com_flashmagazinedeluxe) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the mag_id parameter in a magazine action to index.php.
Tue, 3 Feb 09
memht_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0372
Unrestricted file upload vulnerability in index.php in Miltenovik Manojlo MemHT Portal 4.0.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension and an image content type via a users editProfile action, then accessing this file via a direct request to the file in images/avatar/uploaded/.
Tue, 3 Feb 09
sitexs_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0371
Directory traversal vulnerability in post.php in SiteXS CMS 0.1.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the type parameter.
Tue, 3 Feb 09
aix
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0370
Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating "secure log files."
Tue, 3 Feb 09
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0369
Microsoft Internet Explorer 7 allows remote attackers to trick a user into visiting an arbitrary URL via an onclick action that moves a crafted element to the current mouse position, related to a "Clickjacking" vulnerability.
Tue, 3 Feb 09
select_access
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0204
Cross-site scripting (XSS) vulnerability in HP Select Access 6.1 and 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Tue, 3 Feb 09
sudo
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0034
parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.
Tue, 3 Feb 09
_dogtag_certificate_system
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5082
The verifyProof function in the Token Processing System (TPS) component in Red Hat Certificate System (RHCS) 7.1 through 7.3 and Dogtag Certificate System 1.0 returns successfully even when token enrollment did not use the hardware key, which allows remote authenticated users with enrollment privileges to bypass intended authentication policies by performing enrollment with a software key.
Tue, 3 Feb 09
esfaq
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6016
SQL injection vulnerability in questions.php in EsFaq 2.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2008-3952. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Tue, 3 Feb 09
esfaq
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6015
Multiple SQL injection vulnerabilities in search.php in EsFaq 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) keywords and (2) cat parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.