| Page(s) : 1 ... 326 327 328 329 330 331 332 333 334 335 [336] 337 338 339 340 341 342 343 344 345 346 ... | Result(s) : 8834 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2008-06-25 | CVE-2008-2849 | cve | Cross-site scripting (XSS) vulnerability in the TrailScout module 5.x before 5.x-1.4 for Drupal allows remote authenticated users, with create post permissions, to inject arbitr... |
| 2.1 | 2008-06-23 | CVE-2008-1952 | cve | The backend for XenSource Xen Para Virtualized Frame Buffer (PVFB) in Xen ioemu does not properly restrict the frame buffer size, which allows attackers to cause a denial of ser... |
| 3.5 | 2008-06-18 | CVE-2008-2768 | cve | Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to inject arbitrary we... |
| 3.5 | 2008-06-18 | CVE-2008-2764 | cve | Cross-site scripting (XSS) vulnerability in admin/search.asp in Xigla Absolute Live Support XE 5.1 allows remote authenticated administrators to inject arbitrary web script or H... |
| 3.5 | 2008-06-18 | CVE-2008-2761 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Xigla Absolute Banner Manager XE 2.0 allow remote authenticated administrators to inject arbitrary web script or HTML via ... |
| 3.5 | 2008-06-18 | CVE-2008-2758 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Xigla Absolute News Manager XE 3.2 allow remote authenticated administrators to inject arbitrary web script or HTML via th... |
| 2.1 | 2008-06-18 | CVE-2008-2747 | cve | No-IP Dynamic Update Client (DUC) 2.2.1 on Windows uses weak permissions for the HKLM\SOFTWARE\Vitalwerks\DUC registry key, which allows local users to obtain obfuscated passwor... |
| 2.1 | 2008-06-03 | CVE-2008-2517 | cve | The sarab.sh script in SaraB before 0.2.4 places the dar program's encryption key on the command line, which allows local users to obtain sensitive information by listing t... |
| 2.1 | 2008-06-02 | CVE-2008-1578 | cve | The sso_util program in Single Sign-On in Apple Mac OS X before 10.5.3 places passwords on the command line, which allows local users to obtain sensitive information by listing ... |
| 2.1 | 2008-06-02 | CVE-2008-1033 | cve | The scheduler in CUPS in Apple Mac OS X 10.5 before 10.5.3, when debug logging is enabled and a printer requires a password, allows attackers to obtain sensitive information (cr... |
| 1.9 | 2008-05-23 | CVE-2007-5496 | cve | Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject arbitrary web script or HTML via a crafted (1) file or (2) process name, which trig... |
| 3.6 | 2008-05-18 | CVE-2008-2288 | cve | Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to c... |
| 2.1 | 2008-05-14 | CVE-2008-1943 | cve | Buffer overflow in the backend of XenSource Xen Para Virtualized Frame Buffer (PVFB) 3.0 through 3.1.2 allows local users to cause a denial of service (crash) and possibly execu... |
| 2.1 | 2008-05-12 | CVE-2008-2159 | cve | Microsoft Internet Explorer 7 can save encrypted pages in the cache even when the DisableCachingOfSSLPages registry setting is enabled, which might allow local users to obtain s... |
| 3.6 | 2008-05-12 | CVE-2008-2148 | cve | The utimensat system call (sys_utimensat) in Linux kernel 2.6.22 and other versions before 2.6.25.3 does not check file permissions when certain UTIME_NOW and UTIME_OMIT combina... |
| 1.9 | 2008-05-12 | CVE-2008-2143 | cve | Unspecified versions of Microsoft Outlook Web Access (OWA) use the Cache-Control: no-cache HTTP directive instead of no-store, which might cause web browsers that follow RFC-261... |
| 2.6 | 2008-05-12 | CVE-2008-2140 | cve | Cross-site request forgery (CSRF) vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote attackers to reset the root password as the administ... |
| 3.5 | 2008-05-07 | CVE-2008-2105 | cve | email_in.pl in Bugzilla 2.23.4, 3.0.x before 3.0.4, and 3.1.x before 3.1.4 allows remote authenticated users to more easily spoof the changer of a bug via a @reporter command in... |
| 2.1 | 2008-05-02 | CVE-2008-1294 | cve | Linux kernel 2.6.17, and other versions before 2.6.22, does not check when a user attempts to set RLIMIT_CPU to 0 until after the change is made, which allows local users to byp... |
| 3.5 | 2008-04-30 | CVE-2008-2037 | cve | Multiple cross-site scripting (XSS) vulnerabilities in EditeurScripts EsContacts 1.0 allow remote authenticated users to inject arbitrary web script or HTML via the msg paramete... |
| Page(s) : 1 ... 326 327 328 329 330 331 332 333 334 335 [336] 337 338 339 340 341 342 343 344 345 346 ... | Result(s) : 8834 |
