| Page(s) : 1 ... 311 312 313 314 315 316 317 318 319 320 [321] 322 323 324 325 326 327 328 329 330 331 ... | Result(s) : 8829 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2009-12-21 | CVE-2009-4371 | cve | Cross-site scripting (XSS) vulnerability in the Locale module (modules/locale/locale.module) in Drupal Core 6.14, and possibly other versions including 6.15, allows remote authe... |
| 3.5 | 2009-12-21 | CVE-2009-4370 | cve | Cross-site scripting (XSS) vulnerability in the Menu module (modules/menu/menu.admin.inc) in Drupal Core 6.x before 6.15 allows remote authenticated users with permissions to cr... |
| 3.5 | 2009-12-21 | CVE-2009-4369 | cve | Cross-site scripting (XSS) vulnerability in the Contact module (modules/contact/contact.admin.inc or modules/contact/contact.module) in Drupal Core 5.x before 5.21 and 6.x befor... |
| 2.1 | 2009-12-15 | CVE-2009-3554 | cve | Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP08 and 4.3 before 4.3.0.CP07 writes the JMX password, and other command-line... |
| 3.5 | 2009-12-10 | CVE-2009-4237 | cve | Multiple cross-site scripting (XSS) vulnerabilities in TestLink before 1.8.5 allow remote attackers to inject arbitrary web script or HTML via (1) the req parameter to login.php... |
| 2.6 | 2009-12-09 | CVE-2009-4249 | cve | Multiple cross-site scripting (XSS) vulnerabilities in CutePHP CuteNews 1.4.6, when register_globals is enabled and magic_quotes_gpc is disabled, allow remote attackers to injec... |
| 3.3 | 2009-12-04 | CVE-2009-3304 | cve | GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink attack on authorized_keys files in users' home directories, related to deb-s... |
| 3.3 | 2009-12-03 | CVE-2009-4193 | cve | Merkaartor 0.14 allows local users to append data to arbitrary files via a symlink attack on the /tmp/merkaartor.log temporary file. |
| 2.6 | 2009-12-02 | CVE-2009-4172 | cve | Cross-site scripting (XSS) vulnerability in index.php in CutePHP CuteNews 1.4.6 and UTF-8 CuteNews 8 and 8b, when magic_quotes_gpc is disabled, allows remote attackers to inject... |
| 3.5 | 2009-12-02 | CVE-2009-4159 | cve | Cross-site scripting (XSS) vulnerability in the newsletter configuration feature in the backend module in the Direct Mail (direct_mail) extension 2.6.4 and earlier for TYPO3 all... |
| 2.1 | 2009-11-30 | CVE-2009-4118 | cve | The StartServiceCtrlDispatcher function in the cvpnd service (cvpnd.exe) in Cisco VPN client for Windows before 5.0.06.0100 does not properly handle an ERROR_FAILED_SERVICE_CONT... |
| 3.5 | 2009-11-30 | CVE-2009-4116 | cve | Multiple directory traversal vulnerabilities in CutePHP CuteNews 1.4.6, when magic_quotes_gpc is disabled, allow remote authenticated users with editor or administrative applica... |
| 3.5 | 2009-11-29 | CVE-2009-4105 | cve | TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (crash) by sending an APPE (append) command immediately followed by a DELE (delete) comman... |
| 2.1 | 2009-11-29 | CVE-2009-4080 | cve | Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users ... |
| 2.6 | 2009-11-25 | CVE-2009-4022 | cve | Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation ena... |
| 3.5 | 2009-11-17 | CVE-2009-3891 | cve | Cross-site scripting (XSS) vulnerability in wp-admin/press-this.php in WordPress before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML via the s ... |
| 2.1 | 2009-11-16 | CVE-2009-3940 | cve | Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to ca... |
| 2.6 | 2009-11-06 | CVE-2009-3300 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Identity Provider (IdP) 1.3.x before 1.3.4 and 2.x before 2.1.5, and the Service Provider 1.3.x before 1.3.5 and 2.x b... |
| 3.5 | 2009-11-02 | CVE-2009-3629 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Backend subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 ... |
| 3.5 | 2009-10-26 | CVE-2009-3782 | cve | Unspecified vulnerability in Userpoints 6.x before 6.x-1.1, a module for Drupal, allows remote authenticated users with "View own userpoints" permissions to read the userpoint d... |
| Page(s) : 1 ... 311 312 313 314 315 316 317 318 319 320 [321] 322 323 324 325 326 327 328 329 330 331 ... | Result(s) : 8829 |
