VULNMAP - Security Vulnerabilities

CVE List - 2009 / April

Showing 101 - 200 of 567 CVEs for April 2009 (Page 2 of 6)

CVE ID Date Title
CVE-2008-6616 2009-04-06 Cross-site scripting (XSS) vulnerability in index.php in Zen Software Zen...
CVE-2008-6617 2009-04-06 Unrestricted file upload vulnerability in adm/visual/upload.php in SiteXS CMS 0.1.1...
CVE-2008-6618 2009-04-06 Multiple SQL injection vulnerabilities in ClassSystem 2.3 allow remote attackers...
CVE-2008-6619 2009-04-06 Unrestricted file upload vulnerability in class/ApplyDB.php in ClassSystem 2.3 allows...
CVE-2008-6620 2009-04-06 Multiple cross-site scripting (XSS) vulnerabilities in javascript/editor/editor/filemanager/browser/mcpuk/connectors/php/connector.php in GraFX miniCWB...
CVE-2008-6621 2009-04-06 Unspecified vulnerability in GraphicsMagick before 1.2.3 allows remote attackers to...
CVE-2008-6622 2009-04-06 SQL injection vulnerability in choosecard.php in WEBBDOMAIN Post Card (aka...
CVE-2008-6623 2009-04-06 SQL injection vulnerability in getin.php in WEBBDOMAIN Post Card (aka...
CVE-2008-6624 2009-04-06 SQL injection vulnerability in getin.php in WEBBDOMAIN Petition 1.02, 2.0,...
CVE-2008-6625 2009-04-06 SQL injection vulnerability in getin.php in WEBBDOMAIN Polls (aka Poll)...
CVE-2008-6626 2009-04-06 SQL injection vulnerability in getin.php in WEBBDOMAIN Quiz 1.02 and...
CVE-2008-6627 2009-04-06 SQL injection vulnerability in getin.php in WEBBDOMAIN WebShop 1.2, 1.1,...
CVE-2008-6629 2009-04-06 Cross-site scripting (XSS) vulnerability in detail.php in WEBBDOMAIN Multi Languages...
CVE-2008-6630 2009-04-07 Directory traversal vulnerability in the wt_gallery extension 2.5.0 and earlier...
CVE-2008-6631 2009-04-07 Multiple cross-site scripting (XSS) vulnerabilities in index.php in BlogPHP 2.0...
CVE-2008-6632 2009-04-07 SQL injection vulnerability in func/login.php in MercuryBoard 1.1.5 and earlier...
CVE-2008-6633 2009-04-07 SQL injection vulnerability in RoomPHPlanning 1.5 allows remote attackers to...
CVE-2008-6634 2009-04-07 SQL injection vulnerability in RoomPHPlanning 1.5 allows remote attackers to...
CVE-2008-6635 2009-04-07 PHP remote file inclusion vulnerability in skins/default.php in Geody Labs...
CVE-2008-6636 2009-04-07 PHP remote file inclusion vulnerability in skins/default.php in Geody Labs...
CVE-2008-6637 2009-04-07 Multiple cross-site scripting (XSS) vulnerabilities in forgotPW.php in Library Video...
CVE-2008-6638 2009-04-07 Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX...
CVE-2008-6639 2009-04-07 Cross-site request forgery (CSRF) vulnerability in admin.php in AjaXplorer 2.3.3...
CVE-2008-6640 2009-04-07 Multiple SQL injection vulnerabilities in BatmanPorTaL allow remote attackers to...
CVE-2008-6641 2009-04-07 Multiple SQL injection vulnerabilities in Shader TV (Beta) allow remote...
CVE-2008-6642 2009-04-07 SQL injection vulnerability in view.php in DotContent FluentCMS 4.x allows...
CVE-2008-6643 2009-04-07 LokiCMS 0.3.4 and possibly earlier versions does not properly restrict...
CVE-2008-6644 2009-04-07 Cross-site scripting (XSS) vulnerability in Default.aspx in DotNetNuke 4.8.3 and...
CVE-2008-6645 2009-04-07 Cross-site scripting (XSS) vulnerability in Opencosmo VisualSentinel 0.7 allows remote...
CVE-2008-6646 2009-04-07 Cross-site scripting (XSS) vulnerability in index.php in CoronaMatrix phpAddressBook 2.0...
CVE-2008-6647 2009-04-07 SQL injection vulnerability in gallery.php in Ktools PhotoStore 3.4.3 allows...
CVE-2008-6648 2009-04-07 SQL injection vulnerability in crumbs.php in Ktools PhotoStore 3.4.3 and...
CVE-2008-6649 2009-04-07 SQL injection vulnerability in manager/image_details_editor.php in Ktools PhotoStore 2.5, 2.9.8,...
CVE-2008-6650 2009-04-07 del.php in miniBloggie 1.0 allows remote attackers to delete arbitrary...
CVE-2008-6651 2009-04-07 Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85...
CVE-2008-6652 2009-04-07 SQL injection vulnerability in asd.php in OneCMS 2.5 allows remote...
CVE-2008-6653 2009-04-07 SQL injection vulnerability in webhosting.php in the Webhosting Component (com_webhosting)...
CVE-2008-6654 2009-04-07 Cross-site scripting (XSS) vulnerability in search_results.php in InfoBiz Server allows...
CVE-2008-6655 2009-04-07 Multiple cross-site scripting (XSS) vulnerabilities in GEDCOM_TO_MYSQL 2 allow remote...
CVE-2008-6656 2009-04-07 Multiple SQL injection vulnerabilities in Open Auto Classifieds 1.4.3b allow...
CVE-2008-6657 2009-04-07 Cross-site request forgery (CSRF) vulnerability in index.php in Simple Machines...
CVE-2008-6658 2009-04-07 Directory traversal vulnerability in index.php in Simple Machines Forum (SMF)...
CVE-2008-6659 2009-04-07 Directory traversal vulnerability in index.php in Simple Machines Forum (SMF)...
CVE-2008-6660 2009-04-07 Unrestricted file upload vulnerability in bigdump.php in Alexey Ozerov BigDump...
CVE-2008-6661 2009-04-07 Multiple integer overflows in the scanning engine in Bitdefender for...
CVE-2008-6662 2009-04-07 AVG Anti-Virus for Linux 7.5.51, and possibly earlier, allows remote...
CVE-2009-0796 2009-04-07 Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status...
CVE-2009-1256 2009-04-07 SQL injection vulnerability in FlexCMS 2.5 allows remote attackers to...
CVE-2009-1257 2009-04-07 Heap-based buffer overflow in Magic ISO Maker 5.5 build 0274...
CVE-2009-1258 2009-04-07 SQL injection vulnerability in the RD-Autos (com_rdautos) component 1.5.7 for...
CVE-2009-1259 2009-04-07 SQL injection vulnerability in inc/bb/topic.php in Insane Visions AdaptBB 1.0,...
CVE-2009-1260 2009-04-07 Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow...
CVE-2009-1261 2009-04-07 Multiple cross-site scripting (XSS) vulnerabilities in Web Help Desk 9.1.22...
CVE-2009-1262 2009-04-07 Format string vulnerability in Fortinet FortiClient 3.0.614, and possibly earlier,...
CVE-2009-1263 2009-04-07 SQL injection vulnerability in sub_commententry.php in the BookJoomlas (com_bookjoomlas) component...
CVE-2009-1264 2009-04-07 Frontend User Registration (sr_feuser_register) extension 2.5.20 and earlier for TYPO3...
CVE-2009-1265 2009-04-08 Integer overflow in rose_sendmsg (sys/net/af_rose.c) in the Linux kernel 2.6.24.4,...
CVE-2008-6663 2009-04-08 SQL injection vulnerability in profile.php in PHPAuctions.info PHPAuctions (aka PHPAuctionSystem)...
CVE-2008-6664 2009-04-08 action.php in SH-News 3.0 allows remote attackers to bypass authentication...
CVE-2008-6665 2009-04-08 change.php in Ananta CMS 1.0b5, with magic_quotes_gpc disabled, allows remote...
CVE-2008-6666 2009-04-08 Multiple cross-site scripting (XSS) vulnerabilities in Kronos webTA allow remote...
CVE-2008-6667 2009-04-08 A+ PHP Scripts News Management System (NMS) allows remote attackers...
CVE-2008-6668 2009-04-08 Multiple directory traversal vulnerabilities in nweb2fax 0.2.7 and earlier allow...
CVE-2008-6669 2009-04-08 viewrq.php in nweb2fax 0.2.7 and earlier allows remote attackers to...
CVE-2008-6670 2009-04-08 Integer overflow in Vertex4 SunAge 1.08.1 and earlier allows remote...
CVE-2008-6671 2009-04-08 Vertex4 SunAge 1.08.1 and earlier allows remote attackers to cause...
CVE-2008-6672 2009-04-08 Vertex4 SunAge 1.08.1 and earlier allows remote attackers to cause...
CVE-2008-6673 2009-04-08 asp/bs_login.asp in QuickerSite 1.8.5 does not properly restrict access to...
CVE-2008-6674 2009-04-08 mailPage.asp in QuickerSite 1.8.5 allows remote attackers to flood e-mail...
CVE-2008-6675 2009-04-08 Multiple cross-site scripting (XSS) vulnerabilities in QuickerSite 1.8.5 allow remote...
CVE-2008-6676 2009-04-08 QuickerSite 1.8.5 allows remote attackers to obtain sensitive information via...
CVE-2008-6677 2009-04-08 Unrestricted file upload vulnerability in fckeditor251/editor/filemanager/connectors/asp/upload.asp in QuickerSite 1.8.5 allows...
CVE-2008-6678 2009-04-08 SQL injection vulnerability in asp/includes/contact.asp in QuickerSite 1.8.5 allows remote...
CVE-2007-6725 2009-04-08 The CCITTFax decoding filter in Ghostscript 8.60, 8.61, and possibly...
CVE-2008-6679 2009-04-08 Buffer overflow in the BaseFont writer module in Ghostscript 8.62,...
CVE-2008-6680 2009-04-08 libclamav/pe.c in ClamAV before 0.95 allows remote attackers to cause...
CVE-2009-1270 2009-04-08 libclamav/untar.c in ClamAV before 0.95 allows remote attackers to cause...
CVE-2009-1271 2009-04-08 The JSON_parser function (ext/json/JSON_parser.c) in PHP 5.2.x before 5.2.9 allows...
CVE-2009-1272 2009-04-08 The php_zip_make_relative_path function in php_zip.c in PHP 5.2.x before 5.2.9...
CVE-2009-1273 2009-04-08 pam_ssh 1.92 and possibly other versions, as used when PAM...
CVE-2009-1274 2009-04-08 Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in...
CVE-2009-0844 2009-04-09 The get_input_token function in the SPNEGO implementation in MIT Kerberos...
CVE-2009-0846 2009-04-09 The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime decoder...
CVE-2009-0847 2009-04-09 The asn1buf_imbed function in the ASN.1 decoder in MIT Kerberos...
CVE-2009-1250 2009-04-09 The cache manager in the client in OpenAFS 1.0 through...
CVE-2009-1251 2009-04-09 Heap-based buffer overflow in the cache manager in the client...
CVE-2009-1253 2009-04-09 James Stone Tunapie 2.1 allows local users to overwrite arbitrary...
CVE-2009-1254 2009-04-09 James Stone Tunapie 2.1 allows remote attackers to execute arbitrary...
CVE-2007-6726 2009-04-09 Multiple cross-site scripting (XSS) vulnerabilities in Dojo 0.4.1 and 0.4.2,...
CVE-2008-2025 2009-04-09 Cross-site scripting (XSS) vulnerability in Apache Struts before 1.2.9-162.31.1 on...
CVE-2008-5519 2009-04-09 The JK Connector (aka mod_jk) 1.2.0 through 1.2.26 in Apache...
CVE-2008-6681 2009-04-09 Cross-site scripting (XSS) vulnerability in dijit.Editor in Dojo before 1.1...
CVE-2008-6682 2009-04-09 Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 2.0.x before...
CVE-2009-0197 2009-04-09 Integer overflow in the FORMATS Plugin before 4.23 for IrfanView...
CVE-2009-0793 2009-04-09 cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used...
CVE-2009-1144 2009-04-09 Untrusted search path vulnerability in the Gentoo package of Xpdf...
CVE-2009-1155 2009-04-09 Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security...
CVE-2009-1156 2009-04-09 Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series...
CVE-2009-1157 2009-04-09 Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 Series...
CVE-2009-1158 2009-04-09 Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series...