| Page(s) : 1 ... 320 321 322 323 324 325 326 327 328 329 [330] 331 332 333 334 335 336 337 338 339 340 ... | Result(s) : 8833 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2009-01-20 | CVE-2008-2368 | cve | Red Hat Certificate System 7.2 stores passwords in cleartext in the UserDirEnrollment log, the RA wizard installer log, and unspecified other debug log files, and uses weak perm... |
| 2.1 | 2009-01-20 | CVE-2008-2367 | cve | Red Hat Certificate System 7.2 uses world-readable permissions for password.conf and unspecified other configuration files, which allows local users to discover passwords by rea... |
| 2.6 | 2009-01-13 | CVE-2008-5460 | cve | Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote attackers to affect confidentiality via unkno... |
| 1.2 | 2009-01-13 | CVE-2008-5450 | cve | Unspecified vulnerability in the Oracle Applications Platform Engineering component in Oracle E-Business Suite 11.5.10 CU2 and 12.0.6 allows local users to affect confidentialit... |
| 3.5 | 2009-01-13 | CVE-2008-5446 | cve | Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10 CU2 and 12.0.6 allows remote authenticated users to affect confidenti... |
| 2.1 | 2009-01-13 | CVE-2008-2623 | cve | Unspecified vulnerability in the Oracle JDeveloper component in Oracle Application Server 10.1.2.3 allows local users to affect confidentiality via unknown vectors. |
| 1.7 | 2009-01-13 | CVE-2008-3973 | cve | Unspecified vulnerability in the SQL*Plus Windows GUI component in Oracle Database allows local users to affect confidentiality via unknown vectors. |
| 2.6 | 2009-01-12 | CVE-2008-5893 | cve | Cross-site scripting (XSS) vulnerability in admin_dblayers.asp in ClickAndEmail allows remote attackers to inject arbitrary web script or HTML via the tablename parameter in an ... |
| 2.6 | 2009-01-08 | CVE-2009-0071 | cve | Mozilla Firefox 3.0.5 and earlier 3.0.x versions, when designMode is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and application cras... |
| 2.6 | 2009-01-05 | CVE-2008-5847 | cve | Constructr CMS 3.02.5 and earlier stores passwords in cleartext in a MySQL database, which allows context-dependent attackers to obtain sensitive information by reading the hash... |
| 2.6 | 2009-01-02 | CVE-2008-5825 | cve | The SmartPoster implementation on the Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware does not properly display the URI record when the Title record contains... |
| 2.6 | 2009-01-02 | CVE-2008-5814 | cve | Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and earlier, when display_errors is enabled, allows remote attackers to inject arbitrary web script or HTML via u... |
| 3.5 | 2008-12-30 | CVE-2008-5757 | cve | Cross-site scripting (XSS) vulnerability in textarea/index.php in Textpattern (aka Txp CMS) 4.0.6 and earlier allows remote authenticated users to inject arbitrary web script or... |
| 1.9 | 2008-12-22 | CVE-2008-5700 | cve | libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives... |
| 2.1 | 2008-12-19 | CVE-2008-5690 | cve | The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv_01 through snv_104, allows local users to cause a denial of service (authenticatio... |
| 3.5 | 2008-12-19 | CVE-2008-5250 | cve | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.6.11, 1.12.x before 1.12.2, and 1.13.x before 1.13.3, when Internet Explorer is used and uploads are enabled, or a... |
| 3.5 | 2008-12-19 | CVE-2008-0971 | cve | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Barracuda Spam Firewall (BSF) before 3.5.12.007, Message Archiver before 1.2.1.002, Web Filter before 3.3.0.0... |
| 3.5 | 2008-12-18 | CVE-2008-5666 | cve | WinFTP FTP Server 2.3.0, when passive (aka PASV) mode is used, allows remote authenticated users to cause a denial of service via a sequence of FTP sessions that include an inva... |
| 2.6 | 2008-12-17 | CVE-2008-5503 | cve | The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not perform any security checks re... |
| 2.1 | 2008-12-10 | CVE-2008-5417 | cve | HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass inten... |
| Page(s) : 1 ... 320 321 322 323 324 325 326 327 328 329 [330] 331 332 333 334 335 336 337 338 339 340 ... | Result(s) : 8833 |
