VYPR

CVEs

345,178 total · page 6178 of 6,904

  • CVE-2008-6764Apr 28, 2009
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in login.php in Silentum LoginSys 1.0.0 allows remote attackers to inject arbitrary web script or HTML via the message parameter.

  • CVE-2008-6763Apr 28, 2009
    risk 0.04cvss epss 0.07

    login2.php in Silentum LoginSys 1.0.0 allows remote attackers to bypass authentication and obtain access to an arbitrary account by setting the logged_in cookie to that account's username.

  • CVE-2008-6762Apr 28, 2009
    risk 0.00cvss epss 0.02

    Open redirect vulnerability in wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the backto parameter.

  • CVE-2008-6761Apr 28, 2009
    risk 0.04cvss epss 0.06

    Static code injection vulnerability in admin/install.php in Flexcustomer 0.0.6 might allow remote attackers to inject arbitrary PHP code into const.inc.php via the installdbname parameter (aka the Database Name field). NOTE: the installation instructions specify deleting…

  • CVE-2008-6760Apr 28, 2009
    risk 0.00cvss epss 0.02

    ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to obtain sensitive information via an unauthenticated add and save action for a shopping cart in cart_save.php, which reveals the SQL table names in an error message, related to code that mishandles the lack of a…

  • CVE-2008-6759Apr 28, 2009
    risk 0.00cvss epss 0.01

    ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to obtain sensitive information via a URL in the POST_DATA parameter to manuals_search.php, which reveals the installation path in an error message.

  • CVE-2008-6758Apr 28, 2009
    risk 0.03cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in cart_save.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to hijack the authentication of arbitrary users for requests that conduct persistent cross-site scripting (XSS) attacks via the cart_name parameter in a…

  • CVE-2008-6757Apr 28, 2009
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in manuals_search.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to inject arbitrary web script or HTML via the manuals_search parameter.

  • CVE-2008-2438Apr 28, 2009
    risk 0.01cvss epss 0.11

    Integer overflow in ovalarmsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted command to TCP port 2954, which triggers a heap-based buffer overflow.

  • CVE-2009-1451Apr 28, 2009
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in startpage.php in SMA-DB 0.3.12 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

  • CVE-2009-1450Apr 28, 2009
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in format.php in SMA-DB 0.3.12 allows remote attackers to execute arbitrary PHP code via a URL in the _page_content parameter.

  • CVE-2009-1449Apr 27, 2009
    risk 0.03cvss epss 0.06

    Stack-based buffer overflow in PortableApps CoolPlayer Portable (aka CoolPlayer+ Portable) 2.19.1 allows remote attackers to execute arbitrary code via a skin file (skin.ini) with a large PlaylistSkin parameter. NOTE: this may overlap CVE-2008-5735.

  • CVE-2009-1448Apr 27, 2009
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in apricot.php in LovPop.net APRICOT, probably 1.20, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

  • CVE-2009-1190Apr 27, 2009
    risk 0.00cvss epss 0.03

    Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java Development Kit (JDK) before 1.6, when used with spring.jar in SpringSource Spring Framework 1.1.0 through 2.5.6 and 3.0.0.M1 through 3.0.0.M2 and dm Server 1.0.0 through 1.0.2, allows…

  • CVE-2008-6756Apr 27, 2009
    risk 0.00cvss epss 0.00

    ZoneMinder 1.23.3 on Gentoo Linux uses 0644 permissions for /etc/zm.conf, which allows local users to obtain the database username and password by reading this file.

  • CVE-2008-6755Apr 27, 2009
    risk 0.00cvss epss 0.01

    ZoneMinder 1.23.3 on Fedora 10 sets the ownership of /etc/zm.conf to the apache user account, and sets the permissions to 0600, which makes it easier for remote attackers to modify this file by accessing it through a (1) PHP or (2) CGI script.

  • CVE-2009-1447Apr 27, 2009
    risk 0.03cvss epss 0.04

    Unrestricted file upload vulnerability in admin/editor/image.php in e-cart.biz Free Shopping Cart allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/.

  • CVE-2009-1446Apr 27, 2009
    risk 0.03cvss epss 0.03

    Unrestricted file upload vulnerability in upload.php in Elkagroup Image Gallery 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in gallery/pictures/. NOTE: some…

  • CVE-2009-1445Apr 27, 2009
    risk 0.03cvss epss 0.06

    Multiple directory traversal vulnerabilities in WebPortal CMS 0.8-beta allow remote attackers to (1) read arbitrary files via directory traversal sequences in the lang parameter to libraries/helpdocs/help.php and (2) include and execute arbitrary local files via directory…

  • CVE-2009-1444Apr 27, 2009
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in indexk.php in WebPortal CMS 0.8-beta allows remote attackers to execute arbitrary PHP code via a URL in the lib_path parameter.

  • CVE-2009-1443Apr 27, 2009
    risk 0.03cvss epss 0.04

    Multiple unspecified vulnerabilities in the Server component in OCS Inventory NG before 1.02 have unknown impact and attack vectors.

  • CVE-2008-6754Apr 27, 2009
    risk 0.00cvss epss 0.01

    The Personal Sticky Threads addon 1.0.3c for vBulletin allows remote authenticated users to read the title, author, and pages of an arbitrary thread by toggling a personal sticky.

  • CVE-2009-1440Apr 27, 2009
    risk 0.00cvss epss 0.02

    Incomplete blacklist vulnerability in DownloadListCtrl.cpp in amule 2.2.4 allows remote attackers to conduct argument injection attacks into a command for mplayer via a crafted filename.

  • CVE-2009-1439Apr 27, 2009
    risk 0.00cvss epss 0.04

    Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel 2.6.29 and earlier allows remote attackers to cause a denial of service (crash) via a long nativeFileSystem field in a Tree Connect response to an SMB mount request.

  • CVE-2009-1438Apr 27, 2009
    risk 0.00cvss epss 0.05

    Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp) in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted (1) song comment or (2) song…

  • CVE-2009-1437Apr 27, 2009
    risk 0.04cvss epss 0.14

    Stack-based buffer overflow in PortableApps CoolPlayer Portable (aka CoolPlayer+ Portable) 2.19.6 and earlier allows remote attackers to execute arbitrary code via a long string in a malformed playlist (.m3u) file. NOTE: this may overlap CVE-2008-3408.

  • CVE-2009-1436Apr 27, 2009
    risk 0.03cvss epss 0.01

    The db interface in libc in FreeBSD 6.3, 6.4, 7.0, 7.1, and 7.2-PRERELEASE does not properly initialize memory for Berkeley DB 1.85 database structures, which allows local users to obtain sensitive information by reading a database file.

  • CVE-2009-1435Apr 27, 2009
    risk 0.03cvss epss 0.01

    NTRtScan.exe in Trend Micro OfficeScan Client 8.0 SP1 and 8.0 SP1 Patch 1 allows local users to cause a denial of service (application crash) via directories with long pathnames. NOTE: some of these details are obtained from third party information.

  • CVE-2009-1189Apr 27, 2009
    risk 0.00cvss epss 0.01

    The _dbus_validate_signature_with_reason function (dbus-marshal-validate.c) in D-Bus (aka DBus) before 1.2.14 uses incorrect logic to validate a basic type, which allows remote attackers to spoof a signature via a crafted key. NOTE: this is due to an incorrect fix for…

  • CVE-2008-6753Apr 27, 2009
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in SilverStripe before 2.2.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to AjaxUniqueTextField.

  • CVE-2009-1433Apr 24, 2009
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in File::find (filesystem/File.php) in SilverStripe before 2.3.1 allows remote attackers to execute arbitrary SQL commands via the filename parameter.

  • CVE-2009-1414Apr 24, 2009
    risk 0.00cvss epss 0.00

    Google Chrome 2.0.x lets modifications to the global object persist across a page transition, which makes it easier for attackers to conduct Universal XSS attacks via unspecified vectors.

  • CVE-2009-1413Apr 24, 2009
    risk 0.00cvss epss 0.01

    Google Chrome 1.0.x does not cancel timeouts upon a page transition, which makes it easier for attackers to conduct Universal XSS attacks by calling setTimeout to trigger future execution of JavaScript code, and then modifying document.location to arrange for JavaScript…

  • CVE-2009-1412Apr 24, 2009
    risk 0.00cvss epss 0.01

    Argument injection vulnerability in the chromehtml: protocol handler in Google Chrome before 1.0.154.59, when invoked by Internet Explorer, allows remote attackers to determine the existence of files, and open tabs for URLs that do not satisfy the IsWebSafeScheme restriction,…

  • CVE-2009-1192Apr 24, 2009
    risk 0.00cvss epss 0.00

    The (1) agp_generic_alloc_page and (2) agp_generic_alloc_pages functions in drivers/char/agp/generic.c in the agp subsystem in the Linux kernel before 2.6.30-rc3 do not zero out pages that may later be available to a user-space process, which allows local users to obtain…

  • CVE-2009-0798Apr 24, 2009
    risk 0.00cvss epss 0.02

    ACPI Event Daemon (acpid) before 1.0.10 allows remote attackers to cause a denial of service (CPU consumption and connectivity loss) by opening a large number of UNIX sockets without closing them, which triggers an infinite loop.

  • CVE-2009-0164Apr 24, 2009
    risk 0.00cvss epss 0.03

    The web interface for CUPS before 1.3.10 does not validate the HTTP Host header in a client request, which makes it easier for remote attackers to conduct DNS rebinding attacks.

  • CVE-2009-0064Apr 24, 2009
    risk 0.00cvss epss 0.02

    Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allow remote authenticated users to gain privileges, and possibly obtain sensitive information or hijack sessions of arbitrary users, via vectors involving (1)…

  • CVE-2009-0063Apr 24, 2009
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the Control Center in Symantec Brightmail Gateway Appliance before 8.0.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2009-1411Apr 24, 2009
    risk 0.03cvss epss 0.02

    SQL injection vulnerability in events/inc/events.inc.php in the Events plugin for Seditio CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the c parameter to plug.php.

  • CVE-2009-1410Apr 24, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in Quick.Cms.Lite 0.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2009-1409Apr 24, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in usersettings.php in e107 0.7.15 and earlier, when "Extended User Fields" is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the hide parameter, a different vector than CVE-2005-4224 and…

  • CVE-2009-1408Apr 24, 2009
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in webSPELL 4.2.0c allows remote attackers to inject arbitrary web script or HTML allows remote attackers to inject arbitrary web script or HTML via Javascript events such as onmouseover in nested BBcode tags, as demonstrated using (1)…

  • CVE-2009-1407Apr 24, 2009
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in config.php in NotFTP 1.3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a certain languages[][file] parameter.

  • CVE-2009-1406Apr 24, 2009
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in cms_detect.php in TotalCalendar 2.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the include parameter.

  • CVE-2009-1405Apr 24, 2009
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in index.php in PastelCMS 0.8.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the set_lng parameter.

  • CVE-2009-1404Apr 24, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in admin.php in PastelCMS 0.8.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user (Username) parameter.

  • CVE-2009-1403Apr 24, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in product_info.php in CRE Loaded 6.2 allows remote attackers to execute arbitrary SQL commands via the products_id parameter.

  • CVE-2008-6752Apr 24, 2009
    risk 0.04cvss epss 0.06

    adminlogin/password.php in the Twitter Clone (TClone) plugin for ReVou Micro Blogging does not verify the original password before changing passwords, which allows remote attackers to change the administrator's password and gain privileges via a direct request with modified…

  • CVE-2008-6751Apr 24, 2009
    risk 0.03cvss epss 0.04

    Unrestricted file upload vulnerability in index.php in the Twitter Clone (TClone) plugin for ReVou Micro Blogging allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in…