CVE List - 2009 / November
Showing 201 - 300 of 308 CVEs for November 2009 (Page 3 of 4)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2009-3386 | 2009-11-20 | Template.pm in Bugzilla 3.3.2 through 3.4.3 and 3.5 through 3.5.1... |
| CVE-2009-3842 | 2009-11-20 | Unspecified vulnerability on the HP Color LaserJet M3530 Multifunction Printer... |
| CVE-2009-3895 | 2009-11-20 | Heap-based buffer overflow in the exif_entry_fix function (aka the tag... |
| CVE-2009-4042 | 2009-11-20 | Cross-site scripting (XSS) vulnerability in the RootCandy theme 6.x before... |
| CVE-2009-4043 | 2009-11-20 | Cross-site scripting (XSS) vulnerability in the AddToAny module 5.x before... |
| CVE-2009-4044 | 2009-11-20 | The Web Services module 6.x for Drupal does not perform... |
| CVE-2005-4882 | 2009-11-20 | tftpd in Philippe Jounin Tftpd32 2.74 and earlier, as used... |
| CVE-2005-4883 | 2009-11-20 | Race condition in Philippe Jounin Tftpd32 before 2.80 allows remote... |
| CVE-2009-4037 | 2009-11-20 | Multiple SQL injection vulnerabilities in FrontAccounting (FA) before 2.1.7, and... |
| CVE-2009-4038 | 2009-11-20 | Multiple cross-site scripting (XSS) vulnerabilities in NCH Software Axon Virtual... |
| CVE-2009-4039 | 2009-11-20 | Cross-site scripting (XSS) vulnerability in Piwigo before 2.0.6 allows remote... |
| CVE-2009-4040 | 2009-11-20 | Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.0.17 and 2.5.x... |
| CVE-2009-4041 | 2009-11-20 | UseBB 1.0.9 before 1.0.10 allows remote attackers to cause a... |
| CVE-2009-4045 | 2009-11-20 | Multiple SQL injection vulnerabilities in FrontAccounting (FA) before 2.1.7 allow... |
| CVE-2009-4046 | 2009-11-20 | Multiple SQL injection vulnerabilities in FrontAccounting (FA) 2.2.x before 2.2... |
| CVE-2009-3559 | 2009-11-23 | main/streams/plain_wrapper.c in PHP 5.3.x before 5.3.1 does not recognize the... |
| CVE-2009-3557 | 2009-11-23 | The tempnam function in ext/standard/file.c in PHP before 5.2.12 and... |
| CVE-2009-3558 | 2009-11-23 | The posix_mkfifo function in ext/posix/posix.c in PHP before 5.2.12 and... |
| CVE-2009-4048 | 2009-11-23 | Dxmsoft XM Easy Personal FTP Server 5.8.0 allows remote authenticated... |
| CVE-2009-4049 | 2009-11-23 | Heap-based buffer overflow in aswRdr.sys (aka the TDI RDR driver)... |
| CVE-2009-4051 | 2009-11-23 | Home FTP Server 1.10.1.139 allows remote attackers to cause a... |
| CVE-2009-4052 | 2009-11-23 | Multiple cross-site scripting (XSS) vulnerabilities in the JSF Widget Library... |
| CVE-2009-4047 | 2009-11-23 | Multiple cross-site scripting (XSS) vulnerabilities in PHD Help Desk 1.43... |
| CVE-2009-4050 | 2009-11-23 | Directory traversal vulnerability in get_file.php in phpMyBackupPro 2.1 allows remote... |
| CVE-2009-4053 | 2009-11-23 | Multiple directory traversal vulnerabilities in Home FTP Server 1.10.1.139 allow... |
| CVE-2009-3843 | 2009-11-24 | HP Operations Manager 8.10 on Windows contains a "hidden account"... |
| CVE-2009-4017 | 2009-11-24 | PHP before 5.2.12 and 5.3.x before 5.3.1 does not restrict... |
| CVE-2009-4057 | 2009-11-24 | SQL injection vulnerability in the inertialFATE iF Portfolio Nexus (com_if_nexus)... |
| CVE-2009-4058 | 2009-11-24 | SQL injection vulnerability in allauctions.php in Telebid Auction Script allows... |
| CVE-2009-4059 | 2009-11-24 | SQL injection vulnerability in the JoomClip (com_joomclip) component for Joomla!... |
| CVE-2009-4060 | 2009-11-24 | SQL injection vulnerability in includes/content/viewProd.inc.php in CubeCart before 4.3.7 remote... |
| CVE-2009-4061 | 2009-11-24 | Multiple cross-site scripting (XSS) vulnerabilities in the Agreement module 6.x... |
| CVE-2009-4062 | 2009-11-24 | Multiple cross-site scripting (XSS) vulnerabilities in the Printfriendly module 6.x... |
| CVE-2009-4063 | 2009-11-24 | Cross-site scripting (XSS) vulnerability in the Subgroups for Organic Groups... |
| CVE-2009-4064 | 2009-11-24 | Cross-site scripting (XSS) vulnerability in the Gallery Assist module 6.x... |
| CVE-2009-4065 | 2009-11-24 | Cross-site scripting (XSS) vulnerability in the settings page in the... |
| CVE-2009-4066 | 2009-11-24 | Multiple cross-site request forgery (CSRF) vulnerabilities in the "My Account"... |
| CVE-2009-4056 | 2009-11-24 | Directory traversal vulnerability in admin/popup.php in Betsy CMS 3.5 allows... |
| CVE-2009-3576 | 2009-11-24 | Autodesk Softimage 7.x and Softimage XSI 6.x allow remote attackers... |
| CVE-2009-3577 | 2009-11-24 | Autodesk 3D Studio Max (3DSMax) 6 through 9 and 2008... |
| CVE-2009-3578 | 2009-11-24 | Autodesk Maya 8.0, 8.5, 2008, 2009, and 2010 and Alias... |
| CVE-2009-3896 | 2009-11-24 | src/http/ngx_http_parse.c in nginx (aka Engine X) 0.1.0 through 0.4.14, 0.5.x... |
| CVE-2009-3897 | 2009-11-24 | Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of... |
| CVE-2009-3898 | 2009-11-24 | Directory traversal vulnerability in src/http/modules/ngx_http_dav_module.c in nginx (aka Engine X)... |
| CVE-2009-4071 | 2009-11-24 | Opera before 10.10, when exception stacktraces are enabled, places scripting... |
| CVE-2009-4072 | 2009-11-24 | Unspecified vulnerability in Opera before 10.10 has unknown impact and... |
| CVE-2009-4073 | 2009-11-24 | The printing functionality in Microsoft Internet Explorer 8 allows remote... |
| CVE-2009-3303 | 2009-11-24 | Cross-site scripting (XSS) vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7... |
| CVE-2009-4069 | 2009-11-24 | Multiple cross-site scripting (XSS) vulnerabilities in GForge 4.5.14, 4.7.3, and... |
| CVE-2009-4070 | 2009-11-24 | SQL injection vulnerability in GForge 4.5.14, 4.7.3, and possibly other... |
| CVE-2009-3033 | 2009-11-25 | Buffer overflow in the RunCmd method in the Altiris eXpress... |
| CVE-2009-4021 | 2009-11-25 | The fuse_direct_io function in fs/fuse/file.c in the fuse subsystem in... |
| CVE-2009-4022 | 2009-11-25 | Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before... |
| CVE-2009-4074 | 2009-11-25 | The XSS Filter in Microsoft Internet Explorer 8 allows remote... |
| CVE-2009-4075 | 2009-11-25 | Unspecified vulnerability in the timeout mechanism in sshd in Sun... |
| CVE-2009-4078 | 2009-11-25 | Multiple cross-site scripting (XSS) vulnerabilities in Redmine 0.8.5 and earlier... |
| CVE-2009-4079 | 2009-11-25 | Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5 and earlier... |
| CVE-2009-4076 | 2009-11-25 | Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and... |
| CVE-2009-4077 | 2009-11-25 | Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail 0.2.2 and... |
| CVE-2009-4018 | 2009-11-27 | The proc_open function in ext/standard/proc_open.c in PHP before 5.2.11 and... |
| CVE-2009-4031 | 2009-11-27 | The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in... |
| CVE-2009-4032 | 2009-11-27 | Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.7e allow remote... |
| CVE-2009-3736 | 2009-11-27 | ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before... |
| CVE-2009-3894 | 2009-11-27 | Multiple untrusted search path vulnerabilities in dstat before 0.7.0 allow... |
| CVE-2009-4081 | 2009-11-27 | Untrusted search path vulnerability in dstat before r3199 allows local... |
| CVE-2009-4080 | 2009-11-27 | Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration... |
| CVE-2009-4082 | 2009-11-27 | PHP remote file inclusion vulnerability in forums/Forum_Include/index.php in Outreach Project... |
| CVE-2009-4083 | 2009-11-27 | Multiple cross-site scripting (XSS) vulnerabilities in e107 0.7.16 and earlier... |
| CVE-2009-4084 | 2009-11-27 | SQL injection vulnerability in the search feature in e107 0.7.16... |
| CVE-2009-4085 | 2009-11-27 | PHP remote file inclusion vulnerability in assets/plugins/mp3_id/mp3_id.php in PHP Traverser... |
| CVE-2009-4086 | 2009-11-27 | CRLF injection vulnerability in Xerver HTTP Server 4.31 and 4.32... |
| CVE-2009-4087 | 2009-11-27 | Cross-site scripting (XSS) vulnerability in index.php in telepark.wiki 2.4.23 and... |
| CVE-2009-4088 | 2009-11-27 | Multiple directory traversal vulnerabilities in telepark.wiki 2.4.23 and earlier allow... |
| CVE-2009-4089 | 2009-11-27 | telepark.wiki 2.4.23 and earlier allows remote attackers to bypass authorization... |
| CVE-2009-4090 | 2009-11-27 | Unrestricted file upload vulnerability in ajax/addComment.php in telepark.wiki 2.4.23 and... |
| CVE-2009-4091 | 2009-11-27 | comments.php in Simplog 0.9.3.2, and possibly earlier, does not properly... |
| CVE-2009-4092 | 2009-11-27 | Cross-site request forgery (CSRF) vulnerability in user.php in Simplog 0.9.3.2,... |
| CVE-2009-4093 | 2009-11-27 | Multiple cross-site scripting (XSS) vulnerabilities in comments.php in Simplog 0.9.3.2,... |
| CVE-2009-4094 | 2009-11-27 | PHP remote file inclusion vulnerability in class/php/d4m_ajax_pagenav.php in the D4J... |
| CVE-2009-4095 | 2009-11-27 | myPhile 1.2.1 allows remote attackers to bypass authentication via an... |
| CVE-2009-4096 | 2009-11-28 | RADIO istek scripti 2.5 stores sensitive information under the web... |
| CVE-2009-4097 | 2009-11-28 | Stack-based buffer overflow in the MplayInputFile function in Serenity Audio... |
| CVE-2009-4098 | 2009-11-28 | Unrestricted file upload vulnerability in banner-edit.php in OpenX adserver 2.8.1... |
| CVE-2009-4099 | 2009-11-28 | SQL injection vulnerability in the Google Calendar GCalendar (com_gcalendar) component... |
| CVE-2009-4100 | 2009-11-28 | Yoono extension before 6.1.1 for Firefox performs certain operations with... |
| CVE-2009-4101 | 2009-11-28 | infoRSS 1.1.4.2 and earlier extension for Firefox performs certain operations... |
| CVE-2009-4102 | 2009-11-28 | Sage 1.4.3 and earlier extension for Firefox performs certain operations... |
| CVE-2009-4105 | 2009-11-28 | TYPSoft FTP Server 1.10 allows remote authenticated users to cause... |
| CVE-2009-4106 | 2009-11-28 | Unrestricted file upload vulnerability in admintools/editpage-2.php in Agoko CMS 0.4... |
| CVE-2009-4107 | 2009-11-28 | Buffer overflow in Invisible Browsing 5.0.52 allows user-assisted remote attackers... |
| CVE-2009-4108 | 2009-11-28 | XM Easy Personal FTP Server 5.8.0 allows remote authenticated users... |
| CVE-2009-4110 | 2009-11-28 | Cross-site scripting (XSS) vulnerability in the search functionality in DotNetNuke... |
| CVE-2009-4103 | 2009-11-28 | Buffer overflow in Robo-FTP 3.6.17, and possibly other versions, allows... |
| CVE-2009-4104 | 2009-11-28 | SQL injection vulnerability in Lyften Designs LyftenBloggie (com_lyftenbloggie) component 1.0.4... |
| CVE-2009-4109 | 2009-11-28 | The install wizard in DotNetNuke 4.0 through 5.1.4 does not... |
| CVE-2009-4023 | 2009-11-28 | Argument injection vulnerability in the sendmail implementation of the Mail::Send... |
| CVE-2009-4024 | 2009-11-28 | Argument injection vulnerability in the ping function in Ping.php in... |
| CVE-2009-4025 | 2009-11-28 | Argument injection vulnerability in the traceroute function in Traceroute.php in... |
| CVE-2009-4111 | 2009-11-28 | Argument injection vulnerability in Mail/sendmail.php in the Mail package 1.1.14,... |
| CVE-2008-7247 | 2009-11-30 | sql/sql_table.cc in MySQL 5.0.x through 5.0.88, 5.1.x through 5.1.41, and... |