CVE List - 2009 / April
Showing 401 - 500 of 567 CVEs for April 2009 (Page 5 of 6)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2008-6735 | 2009-04-21 | Directory traversal vulnerability in qc/index.php in ThaiQuickCart 3 allows remote... |
| CVE-2008-6736 | 2009-04-21 | Flat Calendar 1.1 does not properly restrict access to administrative... |
| CVE-2008-6737 | 2009-04-21 | Crysis 1.21 and earlier allows remote attackers to obtain sensitive... |
| CVE-2008-6738 | 2009-04-21 | MyShoutPro 1.2 allows remote attackers to bypass authentication and gain... |
| CVE-2008-6739 | 2009-04-21 | Todd Woolums ASP Download management script 1.03 does not require... |
| CVE-2008-6740 | 2009-04-21 | PHP remote file inclusion vulnerability in html/admin/modules/plugin_admin.php in HoMaP-CMS 0.1... |
| CVE-2008-6741 | 2009-04-21 | SQL injection vulnerability in Load.php in Simple Machines Forum (SMF)... |
| CVE-2008-6742 | 2009-04-21 | Foxy P2P software allows remote attackers to cause a denial... |
| CVE-2006-7238 | 2009-04-21 | Cross-site scripting (XSS) vulnerability in MyShoutPro before 1.2 allows remote... |
| CVE-2009-1358 | 2009-04-21 | apt-get in apt before 0.7.21 does not check for the... |
| CVE-2009-1336 | 2009-04-22 | fs/nfs/client.c in the Linux kernel before 2.6.23 does not properly... |
| CVE-2009-1337 | 2009-04-22 | The exit_notify function in kernel/exit.c in the Linux kernel before... |
| CVE-2009-1338 | 2009-04-22 | The kill_something_info function in kernel/signal.c in the Linux kernel before... |
| CVE-2009-1359 | 2009-04-22 | Unspecified vulnerability in the SCTP sockets implementation in Sun OpenSolaris... |
| CVE-2009-1360 | 2009-04-22 | The __inet6_check_established function in net/ipv6/inet6_hashtables.c in the Linux kernel before... |
| CVE-2009-0307 | 2009-04-22 | Cross-site scripting (XSS) vulnerability in the "Customize Statistics Page" (admin/statistics/ConfigureStatistics)... |
| CVE-2009-1302 | 2009-04-22 | The browser engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird... |
| CVE-2009-1303 | 2009-04-22 | The browser engine in Mozilla Firefox before 3.0.9, Thunderbird before... |
| CVE-2009-1304 | 2009-04-22 | The JavaScript engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird... |
| CVE-2009-1305 | 2009-04-22 | The JavaScript engine in Mozilla Firefox before 3.0.9, Thunderbird before... |
| CVE-2009-1306 | 2009-04-22 | The jar: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird,... |
| CVE-2009-1307 | 2009-04-22 | The view-source: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird,... |
| CVE-2009-1308 | 2009-04-22 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird,... |
| CVE-2009-1309 | 2009-04-22 | Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey do not properly... |
| CVE-2009-1310 | 2009-04-22 | Cross-site scripting (XSS) vulnerability in the MozSearch plugin implementation in... |
| CVE-2009-1311 | 2009-04-22 | Mozilla Firefox before 3.0.9 and SeaMonkey before 1.1.17 allow user-assisted... |
| CVE-2009-1312 | 2009-04-22 | Mozilla Firefox before 3.0.9 and SeaMonkey 1.1.17 do not block... |
| CVE-2009-1362 | 2009-04-22 | SQL injection vulnerability in administration/index.php in chCounter 3.1.3 allows remote... |
| CVE-2009-1361 | 2009-04-22 | dig.php in GScripts.net DNS Tools allows remote attackers to execute... |
| CVE-2008-6743 | 2009-04-22 | RSMScript 1.21 allows remote attackers to bypass authentication and gain... |
| CVE-2009-1366 | 2009-04-22 | Cross-site scripting (XSS) vulnerability in Website\admin\Sales\paypalipn.aspx in DotNetNuke (DNN) before... |
| CVE-2009-1367 | 2009-04-22 | Cross-site scripting (XSS) vulnerability in index.php in moziloCMS 1.11 allows... |
| CVE-2009-1368 | 2009-04-22 | Directory traversal vulnerability in index.php in moziloCMS 1.11 allows remote... |
| CVE-2009-1369 | 2009-04-22 | moziloCMS 1.11 allows remote attackers to obtain sensitive information via... |
| CVE-2009-1370 | 2009-04-22 | Stack-based buffer overflow in ape_plugin.plg in Xilisoft Video Converter 3.1.53.0704n... |
| CVE-2009-1371 | 2009-04-23 | The CLI_ISCONTAINED macro in libclamav/others.h in ClamAV before 0.95.1 allows... |
| CVE-2009-1372 | 2009-04-23 | Stack-based buffer overflow in the cli_url_canon function in libclamav/phishcheck.c in... |
| CVE-2008-6744 | 2009-04-23 | Cross-site request forgery (CSRF) vulnerability in Cybozu Office 6, Cybozu... |
| CVE-2008-6745 | 2009-04-23 | index.php in BlogPHP 2.0 allows remote attackers to gain administrator... |
| CVE-2008-6746 | 2009-04-23 | Cross-site scripting (XSS) vulnerability in the contact display view in... |
| CVE-2008-6747 | 2009-04-23 | dotProject before 2.1.2 does not properly restrict access to administrative... |
| CVE-2009-0146 | 2009-04-23 | Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2... |
| CVE-2009-0147 | 2009-04-23 | Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2... |
| CVE-2009-0163 | 2009-04-23 | Integer overflow in the TIFF image decoding routines in CUPS... |
| CVE-2009-0166 | 2009-04-23 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9... |
| CVE-2009-0195 | 2009-04-23 | Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9,... |
| CVE-2009-0662 | 2009-04-23 | The PlonePAS product 3.x before 3.9 and 3.2.x before 3.2.2,... |
| CVE-2009-0664 | 2009-04-23 | Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0.x before 1.0.11... |
| CVE-2009-0799 | 2009-04-23 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9... |
| CVE-2009-0800 | 2009-04-23 | Multiple "input validation flaws" in the JBIG2 decoder in Xpdf... |
| CVE-2009-1179 | 2009-04-23 | Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and... |
| CVE-2009-1180 | 2009-04-23 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9... |
| CVE-2009-1181 | 2009-04-23 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9... |
| CVE-2009-1182 | 2009-04-23 | Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf... |
| CVE-2009-1183 | 2009-04-23 | The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS... |
| CVE-2009-1191 | 2009-04-23 | mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server... |
| CVE-2009-1357 | 2009-04-23 | CRLF injection vulnerability in da/DA/Login in Sun Java System Delegated... |
| CVE-2009-0165 | 2009-04-23 | Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and... |
| CVE-2009-1187 | 2009-04-23 | Integer overflow in the JBIG2 decoding feature in Poppler before... |
| CVE-2009-1188 | 2009-04-23 | Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap... |
| CVE-2008-6748 | 2009-04-24 | Eval injection vulnerability in Megacubo 5.0.7 allows remote attackers to... |
| CVE-2008-6749 | 2009-04-24 | Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPDirectory 0.0.1, when... |
| CVE-2008-6750 | 2009-04-24 | Unrestricted file upload vulnerability in add.php in FlexPHPDirectory 0.0.1 allows... |
| CVE-2008-6751 | 2009-04-24 | Unrestricted file upload vulnerability in index.php in the Twitter Clone... |
| CVE-2008-6752 | 2009-04-24 | adminlogin/password.php in the Twitter Clone (TClone) plugin for ReVou Micro... |
| CVE-2009-1403 | 2009-04-24 | SQL injection vulnerability in product_info.php in CRE Loaded 6.2 allows... |
| CVE-2009-1404 | 2009-04-24 | SQL injection vulnerability in admin.php in PastelCMS 0.8.0, when magic_quotes_gpc... |
| CVE-2009-1405 | 2009-04-24 | Directory traversal vulnerability in index.php in PastelCMS 0.8.0, when magic_quotes_gpc... |
| CVE-2009-1406 | 2009-04-24 | Directory traversal vulnerability in cms_detect.php in TotalCalendar 2.4 allows remote... |
| CVE-2009-1407 | 2009-04-24 | Directory traversal vulnerability in config.php in NotFTP 1.3.1 allows remote... |
| CVE-2009-1408 | 2009-04-24 | Cross-site scripting (XSS) vulnerability in webSPELL 4.2.0c allows remote attackers... |
| CVE-2009-1409 | 2009-04-24 | SQL injection vulnerability in usersettings.php in e107 0.7.15 and earlier,... |
| CVE-2009-1410 | 2009-04-24 | SQL injection vulnerability in index.php in Quick.Cms.Lite 0.5 allows remote... |
| CVE-2009-1411 | 2009-04-24 | SQL injection vulnerability in events/inc/events.inc.php in the Events plugin for... |
| CVE-2009-0063 | 2009-04-24 | Cross-site scripting (XSS) vulnerability in the Control Center in Symantec... |
| CVE-2009-0064 | 2009-04-24 | Multiple unspecified vulnerabilities in the Control Center in Symantec Brightmail... |
| CVE-2009-0164 | 2009-04-24 | The web interface for CUPS before 1.3.10 does not validate... |
| CVE-2009-0798 | 2009-04-24 | ACPI Event Daemon (acpid) before 1.0.10 allows remote attackers to... |
| CVE-2009-1192 | 2009-04-24 | The (1) agp_generic_alloc_page and (2) agp_generic_alloc_pages functions in drivers/char/agp/generic.c in... |
| CVE-2009-1412 | 2009-04-24 | Argument injection vulnerability in the chromehtml: protocol handler in Google... |
| CVE-2009-1413 | 2009-04-24 | Google Chrome 1.0.x does not cancel timeouts upon a page... |
| CVE-2009-1414 | 2009-04-24 | Google Chrome 2.0.x lets modifications to the global object persist... |
| CVE-2009-1433 | 2009-04-24 | SQL injection vulnerability in File::find (filesystem/File.php) in SilverStripe before 2.3.1... |
| CVE-2008-6753 | 2009-04-27 | SQL injection vulnerability in SilverStripe before 2.2.2 allows remote attackers... |
| CVE-2009-1189 | 2009-04-27 | The _dbus_validate_signature_with_reason function (dbus-marshal-validate.c) in D-Bus (aka DBus) before 1.2.14... |
| CVE-2009-1435 | 2009-04-27 | NTRtScan.exe in Trend Micro OfficeScan Client 8.0 SP1 and 8.0... |
| CVE-2009-1436 | 2009-04-27 | The db interface in libc in FreeBSD 6.3, 6.4, 7.0,... |
| CVE-2009-1437 | 2009-04-27 | Stack-based buffer overflow in PortableApps CoolPlayer Portable (aka CoolPlayer+ Portable)... |
| CVE-2009-1438 | 2009-04-27 | Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp) in libmodplug before... |
| CVE-2009-1439 | 2009-04-27 | Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel... |
| CVE-2009-1440 | 2009-04-27 | Incomplete blacklist vulnerability in DownloadListCtrl.cpp in amule 2.2.4 allows remote... |
| CVE-2008-6754 | 2009-04-27 | The Personal Sticky Threads addon 1.0.3c for vBulletin allows remote... |
| CVE-2009-1444 | 2009-04-27 | PHP remote file inclusion vulnerability in indexk.php in WebPortal CMS... |
| CVE-2009-1445 | 2009-04-27 | Multiple directory traversal vulnerabilities in WebPortal CMS 0.8-beta allow remote... |
| CVE-2009-1446 | 2009-04-27 | Unrestricted file upload vulnerability in upload.php in Elkagroup Image Gallery... |
| CVE-2009-1447 | 2009-04-27 | Unrestricted file upload vulnerability in admin/editor/image.php in e-cart.biz Free Shopping... |
| CVE-2009-1443 | 2009-04-27 | Multiple unspecified vulnerabilities in the Server component in OCS Inventory... |
| CVE-2008-6755 | 2009-04-27 | ZoneMinder 1.23.3 on Fedora 10 sets the ownership of /etc/zm.conf... |
| CVE-2008-6756 | 2009-04-27 | ZoneMinder 1.23.3 on Gentoo Linux uses 0644 permissions for /etc/zm.conf,... |
| CVE-2009-1190 | 2009-04-27 | Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java... |