| Page(s) : 1 ... 316 317 318 319 320 321 322 323 324 325 [326] 327 328 329 330 331 332 333 334 335 336 ... | Result(s) : 8833 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.6 | 2009-06-10 | CVE-2009-1710 | cve | WebKit in Apple Safari before 4.0 allows remote attackers to spoof the browser's display of (1) the host name, (2) security indicators, and unspecified other UI elements vi... |
| 1.2 | 2009-06-10 | CVE-2009-1707 | cve | Race condition in the Reset Safari implementation in Apple Safari before 4.0 on Windows might allow local users to read stored web-site passwords via unspecified vectors. |
| 1.9 | 2009-06-09 | CVE-2009-1296 | cve | The eCryptfs support utilities (ecryptfs-utils) 73-0ubuntu6.1 on Ubuntu 9.04 stores the mount passphrase in installation logs, which might allow local users to obtain access to ... |
| 1.9 | 2009-06-09 | CVE-2009-2012 | cve | Unspecified vulnerability in idmap in Sun OpenSolaris snv_88 through snv_110, when a CIFS server is enabled, allows local users to cause a denial of service (idpmapd daemon cras... |
| 2.6 | 2009-06-08 | CVE-2009-2006 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 1.8.5, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) search_term ... |
| 3.5 | 2009-06-05 | CVE-2009-1942 | cve | Cross-site scripting (XSS) vulnerability in the Quiz module 5.x, 6.x-2.x before 6.x-2.2, and 6.x-3.x before 6.x-3.0, a module for Drupal, allows remote authenticated users, with... |
| 2.6 | 2009-06-03 | CVE-2009-1905 | cve | The Common Code Infrastructure component in IBM DB2 8 before FP17, 9.1 before FP7, and 9.5 before FP4, when LDAP security (aka IBMLDAPauthserver) and anonymous bind are enabled,... |
| 3.5 | 2009-06-01 | CVE-2009-1844 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Drupal 5.x before 5.18 and 6.x before 6.12 allow (1) remote authenticated users to inject arbitrary web script or HTML via... |
| 2.6 | 2009-05-29 | CVE-2009-1823 | cve | Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.7 and 6.x before 6.x-1.7, a module for Drupal, allows remote... |
| 3.3 | 2009-05-22 | CVE-2009-1753 | cve | Coccinelle 0.1.7 allows local users to overwrite arbitrary files via a symlink attack on an unspecified "result file." |
| 2.1 | 2009-05-22 | CVE-2009-1756 | cve | SLiM Simple Login Manager 1.3.0 places the X authority magic cookie (mcookie) on the command line when invoking xauth from (1) app.cpp and (2) switchuser.cpp, which allows local... |
| 3.5 | 2009-05-20 | CVE-2009-1738 | cve | Cross-site scripting (XSS) vulnerability in Feed Block 6.x-1.x before 6.x-1.1, a module for Drupal, allows remote authenticated users with administrator feed permissions to inje... |
| 2.1 | 2009-05-14 | CVE-2009-1631 | cve | The Mailer component in Evolution 2.26.1 and earlier uses world-readable permissions for the .evolution directory, and certain directories and files under .evolution/ related to... |
| 2.6 | 2009-05-11 | CVE-2009-1614 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Leap CMS 0.1.4 allow remote attackers to inject arbitrary web script or HTML via (1) the msg parameter (aka the message in... |
| 3.5 | 2009-05-06 | CVE-2009-1556 | cve | img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filena... |
| 1.9 | 2009-04-30 | CVE-2009-1295 | cve | Apport before 0.108.4 on Ubuntu 8.04 LTS, before 0.119.2 on Ubuntu 8.10, and before 1.0-0ubuntu5.2 on Ubuntu 9.04 does not properly remove files from the application's cras... |
| 3.5 | 2009-04-28 | CVE-2009-1461 | cve | Cross-site scripting (XSS) vulnerability in the Create New Page form in razorCMS 0.3 RC2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via... |
| 2.1 | 2009-04-27 | CVE-2008-6756 | cve | ZoneMinder 1.23.3 on Gentoo Linux uses 0644 permissions for /etc/zm.conf, which allows local users to obtain the database username and password by reading this file. |
| 2.1 | 2009-04-27 | CVE-2009-1435 | cve | NTRtScan.exe in Trend Micro OfficeScan Client 8.0 SP1 and 8.0 SP1 Patch 1 allows local users to cause a denial of service (application crash) via directories with long pathnames... |
| 3.6 | 2009-04-27 | CVE-2009-1189 | cve | The _dbus_validate_signature_with_reason function (dbus-marshal-validate.c) in D-Bus (aka DBus) before 1.2.14 uses incorrect logic to validate a basic type, which allows remote ... |
| Page(s) : 1 ... 316 317 318 319 320 321 322 323 324 325 [326] 327 328 329 330 331 332 333 334 335 336 ... | Result(s) : 8833 |
