CVE List - 2009 / December
Showing 301 - 400 of 440 CVEs for December 2009 (Page 4 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2009-4389 | 2009-12-22 | Unspecified vulnerability in the Watchdog (aba_watchdog) extension 2.0.2 and earlier... |
| CVE-2009-4390 | 2009-12-22 | SQL injection vulnerability in the Car (car) extension 0.1.1 for... |
| CVE-2009-4391 | 2009-12-22 | Cross-site scripting (XSS) vulnerability in the File list (dr_blob) extension... |
| CVE-2009-4392 | 2009-12-22 | SQL injection vulnerability in the XDS Staff List (xds_staff) extension... |
| CVE-2009-4393 | 2009-12-22 | SQL injection vulnerability in the Document Directorys (danp_documentdirs) extension 1.10.7... |
| CVE-2009-4394 | 2009-12-22 | SQL injection vulnerability in the Random Prayer 2 (ste_prayer2) extension... |
| CVE-2009-4395 | 2009-12-22 | Cross-site scripting (XSS) vulnerability in the Random Prayer 2 (ste_prayer2)... |
| CVE-2009-4396 | 2009-12-22 | SQL injection vulnerability in the Diocese of Portsmouth Resources Database... |
| CVE-2009-4397 | 2009-12-22 | Cross-site scripting (XSS) vulnerability in the Diocese of Portsmouth Resources... |
| CVE-2009-4398 | 2009-12-22 | Cross-site scripting (XSS) vulnerability in the Parish of the Holy... |
| CVE-2009-4399 | 2009-12-22 | SQL injection vulnerability in the Parish of the Holy Spirit... |
| CVE-2009-4400 | 2009-12-22 | Cross-site scripting (XSS) vulnerability in the Parish Administration Database (ste_parish_admin)... |
| CVE-2009-4401 | 2009-12-22 | SQL injection vulnerability in the Parish Administration Database (ste_parish_admin) extension... |
| CVE-2009-3580 | 2009-12-23 | Cross-site request forgery (CSRF) vulnerability in am.pl in SQL-Ledger 2.8.24... |
| CVE-2009-3581 | 2009-12-23 | Multiple cross-site scripting (XSS) vulnerabilities in SQL-Ledger 2.8.24 allow remote... |
| CVE-2009-3582 | 2009-12-23 | Multiple SQL injection vulnerabilities in the delete subroutine in SQL-Ledger... |
| CVE-2009-3583 | 2009-12-23 | Directory traversal vulnerability in the Preferences menu item in SQL-Ledger... |
| CVE-2009-3584 | 2009-12-23 | SQL-Ledger 2.8.24 does not set the secure flag for the... |
| CVE-2009-4133 | 2009-12-23 | Condor 6.5.4 through 7.2.4, 7.3.x, and 7.4.0, as used in... |
| CVE-2009-4402 | 2009-12-23 | The default configuration of SQL-Ledger 2.8.24 allows remote attackers to... |
| CVE-2009-4403 | 2009-12-23 | Cross-site scripting (XSS) vulnerability in index.php in Rumba XML 1.8... |
| CVE-2009-4404 | 2009-12-23 | Unspecified vulnerability in t-prot (TOFU Protection) before 2.8 allows remote... |
| CVE-2009-4144 | 2009-12-23 | NetworkManager (NM) 0.7.2 does not ensure that the configured Certification... |
| CVE-2009-4145 | 2009-12-23 | nm-connection-editor in NetworkManager (NM) 0.7.x exports connection objects over D-Bus... |
| CVE-2009-4405 | 2009-12-23 | Multiple unspecified vulnerabilities in Trac before 0.11.6 have unknown impact... |
| CVE-2009-4406 | 2009-12-23 | Cross-site scripting (XSS) vulnerability in Forms/login1 in American Power Conversion... |
| CVE-2009-4407 | 2009-12-23 | Multiple cross-site request forgery (CSRF) vulnerabilities in PyForum 1.0.3 and... |
| CVE-2009-4408 | 2009-12-23 | Multiple cross-site scripting (XSS) vulnerabilities in models.parser in PyForum 1.0.3... |
| CVE-2009-4409 | 2009-12-23 | The (1) CHAP and (2) MS-CHAP-V2 authentication capabilities in the... |
| CVE-2009-3305 | 2009-12-24 | Polipo 1.0.4, and possibly other versions, allows remote attackers to... |
| CVE-2009-4410 | 2009-12-24 | The fuse_ioctl_copy_user function in the ioctl handler in fs/fuse/file.c in... |
| CVE-2009-4411 | 2009-12-24 | The (1) setfacl and (2) getfacl commands in XFS acl... |
| CVE-2009-4412 | 2009-12-24 | Unrestricted file upload vulnerability in Serendipity before 1.5 allows remote... |
| CVE-2009-4413 | 2009-12-24 | The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4,... |
| CVE-2009-4414 | 2009-12-24 | SQL injection vulnerability in phpgwapi /inc/class.auth_sql.inc.php in phpGroupWare 0.9.16.12, and... |
| CVE-2009-4415 | 2009-12-24 | Multiple directory traversal vulnerabilities in phpGroupWare 0.9.16.12, and possibly other... |
| CVE-2009-4416 | 2009-12-24 | Cross-site scripting (XSS) vulnerability in login.php in phpGroupWare 0.9.16.12, and... |
| CVE-2009-4137 | 2009-12-24 | The loadContentFromCookie function in core/Cookie.php in Piwik before 0.5 does... |
| CVE-2009-4419 | 2009-12-24 | Intel Q35, GM45, PM45 Express, Q45, and Q43 Express chipsets... |
| CVE-2009-4420 | 2009-12-24 | Buffer overflow in the bd daemon in F5 Networks BIG-IP... |
| CVE-2009-4421 | 2009-12-24 | Directory traversal vulnerability in languages_cgi.php in Simple PHP Blog 0.5.1... |
| CVE-2009-4422 | 2009-12-24 | Multiple cross-site scripting (XSS) vulnerabilities in the GetURLArguments function in... |
| CVE-2009-4423 | 2009-12-24 | SQL injection vulnerability in index.php in weenCompany 4.0.0 allows remote... |
| CVE-2009-4417 | 2009-12-24 | The shutdown function in the Zend_Log_Writer_Mail class in Zend Framework... |
| CVE-2009-4418 | 2009-12-24 | The unserialize function in PHP 5.3.0 and earlier allows context-dependent... |
| CVE-2009-4424 | 2009-12-28 | SQL injection vulnerability in results.php in the Pyrmont plugin 2... |
| CVE-2009-4425 | 2009-12-28 | Cross-site scripting (XSS) vulnerability in index.php in iDevCart 1.09 allows... |
| CVE-2009-4426 | 2009-12-28 | Multiple directory traversal vulnerabilities in Ignition 1.2, when magic_quotes_gpc is... |
| CVE-2009-4427 | 2009-12-28 | Directory traversal vulnerability in cmd.php in phpLDAPadmin 1.1.0.5 allows remote... |
| CVE-2009-4428 | 2009-12-28 | SQL injection vulnerability in the JoomPortfolio (com_joomportfolio) component 1.0.0 for... |
| CVE-2009-4429 | 2009-12-28 | Cross-site scripting (XSS) vulnerability in the Sections module 5.x before... |
| CVE-2009-4430 | 2009-12-28 | SQL injection vulnerability in index.php in VirtueMart 1.0 allows remote... |
| CVE-2009-4432 | 2009-12-28 | SQL injection vulnerability in index.php in CodeMight VideoCMS 3.1 allows... |
| CVE-2009-4433 | 2009-12-28 | Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot iSupport 1.8 and... |
| CVE-2009-4434 | 2009-12-28 | Directory traversal vulnerability in index.php in IDevSpot iSupport 1.8 and... |
| CVE-2009-4435 | 2009-12-28 | Multiple directory traversal vulnerabilities in F3Site 2009 allow remote attackers... |
| CVE-2009-4436 | 2009-12-28 | Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8... |
| CVE-2009-4437 | 2009-12-28 | Multiple SQL injection vulnerabilities in Active Auction House 3.6 allow... |
| CVE-2009-4431 | 2009-12-28 | PHP remote file inclusion vulnerability in cal_popup.php in the Anything... |
| CVE-2009-4007 | 2009-12-28 | Unspecified vulnerability in the NormaliseTrainConsist function in src/train_cmd.cpp in OpenTTD... |
| CVE-2009-4440 | 2009-12-28 | Directory Proxy Server (DPS) in Sun Java System Directory Server... |
| CVE-2009-4441 | 2009-12-28 | Directory Proxy Server (DPS) in Sun Java System Directory Server... |
| CVE-2009-4442 | 2009-12-28 | Directory Proxy Server (DPS) in Sun Java System Directory Server... |
| CVE-2009-4443 | 2009-12-28 | Unspecified vulnerability in the psearch (aka persistent search) functionality in... |
| CVE-2009-1797 | 2009-12-28 | Multiple cross-site request forgery (CSRF) vulnerabilities on the Network Management... |
| CVE-2009-1798 | 2009-12-28 | Multiple cross-site scripting (XSS) vulnerabilities on the Network Management Card... |
| CVE-2009-4438 | 2009-12-28 | The Query Compiler, Rewrite, and Optimizer component in IBM DB2... |
| CVE-2009-4439 | 2009-12-28 | Unspecified vulnerability in the Query Compiler, Rewrite, and Optimizer component... |
| CVE-2009-3295 | 2009-12-29 | The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation... |
| CVE-2009-4445 | 2009-12-29 | Microsoft Internet Information Services (IIS), when used in conjunction with... |
| CVE-2009-4444 | 2009-12-29 | Microsoft Internet Information Services (IIS) 5.x and 6.x uses only... |
| CVE-2009-4446 | 2009-12-29 | Cross-site scripting (XSS) vulnerability in admin.php in phpInstantGallery 1.1 allows... |
| CVE-2009-4447 | 2009-12-29 | Jax Guestbook 3.5.0 allows remote attackers to bypass authentication and... |
| CVE-2009-4448 | 2009-12-29 | inc/functions_time.php in MyBB (aka MyBulletinBoard) 1.4.10, and possibly earlier versions,... |
| CVE-2009-4449 | 2009-12-29 | Directory traversal vulnerability in MyBB (aka MyBulletinBoard) 1.4.10, and possibly... |
| CVE-2009-4450 | 2009-12-29 | Multiple cross-site scripting (XSS) vulnerabilities in map.php in LiveZilla 3.1.8.3... |
| CVE-2009-4451 | 2009-12-29 | Unrestricted file upload vulnerability in upper.php in kandalf upper 0.1... |
| CVE-2009-4452 | 2009-12-29 | Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837),... |
| CVE-2009-4453 | 2009-12-29 | Insecure method vulnerability in SoftCab Sound Converter ActiveX control (sndConverter.ocx)... |
| CVE-2009-4454 | 2009-12-29 | vccleaner in VideoCache 1.9.2 allows local users with Squid proxy... |
| CVE-2009-4455 | 2009-12-29 | The default configuration of Cisco ASA 5500 Series Adaptive Security... |
| CVE-2009-4456 | 2009-12-30 | SQL injection vulnerability in news_detail.php in Green Desktiny 2.3.1, and... |
| CVE-2009-4457 | 2009-12-30 | Multiple unspecified vulnerabilities in the Vsftpd Webmin module before 1.3b... |
| CVE-2009-4458 | 2009-12-30 | Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.2 and 2.6.0rc2,... |
| CVE-2009-4459 | 2009-12-30 | Redmine 0.8.7 and earlier uses the title tag before defining... |
| CVE-2009-4460 | 2009-12-30 | Multiple cross-site scripting (XSS) vulnerabilities in Auto-Surf Traffic Exchange Script... |
| CVE-2009-4461 | 2009-12-30 | Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.909 allow remote... |
| CVE-2009-4462 | 2009-12-30 | Stack-based buffer overflow in the NetBiterConfig utility (NetBiterConfig.exe) 1.3.0 for... |
| CVE-2009-4463 | 2009-12-30 | Intellicom NetBiter WebSCADA devices use default passwords for the HICP... |
| CVE-2009-4464 | 2009-12-30 | Cross-site scripting (XSS) vulnerability in searchadvance.asp in Active Business Directory... |
| CVE-2009-4465 | 2009-12-30 | DeluxeBB 1.3 stores sensitive information under the web root with... |
| CVE-2009-4466 | 2009-12-30 | DeluxeBB 1.3 allows remote attackers to obtain sensitive information via... |
| CVE-2009-4467 | 2009-12-30 | misc.php in DeluxeBB 1.3 allows remote attackers to register accounts... |
| CVE-2009-4468 | 2009-12-30 | Cross-site scripting (XSS) vulnerability in misc.php in DeluxeBB 1.3 allows... |
| CVE-2009-4469 | 2009-12-30 | Multiple cross-site scripting (XSS) vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0... |
| CVE-2009-4470 | 2009-12-30 | SQL injection vulnerability in boardrule.php in DVBBS 2.0 allows remote... |
| CVE-2009-4471 | 2009-12-30 | Multiple PHP remote file inclusion vulnerabilities in FreeSchool 1.1.0 and... |
| CVE-2009-4472 | 2009-12-30 | Multiple PHP remote file inclusion vulnerabilities in PHPope 1.0.0 and... |
| CVE-2009-4473 | 2009-12-30 | Multiple cross-site scripting (XSS) vulnerabilities in WorkArea/ContentDesigner/ekformsiframe.aspx in Ektron CMS400.NET... |
| CVE-2009-4474 | 2009-12-30 | SQL injection vulnerability in the Mike de Boer zoom (com_zoom)... |