| OSVDB ID | Disclosure Date | Title |
|---|
|
54161
Description:
(Description Provided by CVE) : Unspecified vulnerability in useradd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unknown vectors, a different issue than CVE-2008-1660.
|
2009-04-27
|
HP-UX useradd Unspecified Arbitrary Local File Access
|
|
54138
Description:
(Description Provided by CVE) : Multiple unspecified vulnerabilities in the DTrace ioctl handlers in Sun Solaris 10, and OpenSolaris before snv_114, allow local users to cause a denial of service (panic) via unknown vectors.
|
2009-04-27
|
Solaris DTrace IOCTL Handlers Local DoS
|
|
54136
Description:
Unknown / Incomplete
|
2009-04-27
|
Precidia Ether232 Web Server GET Request Handling Memory Corruption DoS
|
|
54524
Description:
(Description Provided by CVE) : The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory.
|
2009-04-27
|
clamav-milter clamav-milter.init on Ubuntu Directory Permission Weakness Local Restriction Bypass
|
|
54213
Description:
A remote overflow exists in IceWarp Merak Mail Server. The IceWarp Merak Mail Server fails to validate the second argument in the Base64FileEncode method in the IceWarpServer.APIObject ActiveX (api.dll) resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2009-04-27
|
IceWarp Merak Mail Server IceWarpServer.APIObject ActiveX (api.dll) Base64FileEncode Method Overflow
|
|
54287
Description:
(Description Provided by CVE) : Zakkis Technology ABC Advertise 1.0 does not properly restrict access to admin.inc.php, which allows remote attackers to obtain the administrator login name and password via a direct request.
|
2009-04-27
|
ABC Advertise admin.inc.php Direct Request Admin Credentials Disclosure
|
|
54301
Description:
Unknown / Incomplete
|
2009-04-27
|
dWebPro file.asp::$DATA HTTP Request Handling Arbitrary File Access
|
|
54421
Description:
(Description Provided by CVE) : Directory traversal vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the show parameter.
|
2009-04-27
|
Dew-NewPHPLinks index.php show Parameter Traversal Arbitrary File Access
|
|
54422
Description:
Dew-NewPHPLinks contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'PID' parameters upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2009-04-27
|
Dew-NewPHPLinks index.php PID Parameter XSS
|
|
54423
Description:
EcShop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'user.php' script not properly sanitizing user-supplied input to the 'order_sn' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-04-27
|
EcShop user.php order_sn Parameter SQL Injection
|
|
54424
Description:
OpenCart contains a flaw that allows a remote attacker to include arbitrary files from local resources via directory traversal attacks. The issue is due to the index.php script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the "route" variable(s).
|
2009-04-27
|
OpenCart index.php route Parameter Traversal Arbitrary File Access
|
|
54669
Description:
(Description Provided by CVE) : Heap-based buffer overflow in Sendmail before 8.13.2 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by an X-Testing header.
|
2009-04-27
|
Sendmail Mail X-Header Handling Remote Overflow
|
|
59774
Description:
Unknown / Incomplete
|
2009-04-27
|
Multiple Antivirus Microsoft Exchange Malformed E-mail X Header Scan Bypass
|
|
56053
Description:
Unknown / Incomplete
|
2009-04-26
|
Webconverger Kiosk Extension file:// URI Handling Unspecified Issue
|
|
54420
Description:
EZ-Blog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'public/specific.php' script not properly sanitizing user-supplied input to the 'category' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-04-26
|
EZ-Blog public/specific.php category Parameter SQL Injection
|
|
56009
Description:
Unknown / Incomplete
|
2009-04-26
|
Debian iodinet Server Malformed Protocol Request Remote DoS
|
|
54135
Description:
MataChat contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "nickname" and "color" variables upon submission to the input.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2009-04-25
|
MataChat input.php Multiple Parameter XSS
|
|
54207
Description:
(Description Provided by CVE) : img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the next_file parameter, as demonstrated by reading .htpasswd to obtain the admin password, a different vulnerability than CVE-2004-2507.
|
2009-04-25
|
Cisco Linksys WVC54GCA IP Camera img/main.cgi admpw Cleartext Admin Password Disclosure
|
|
56397
Description:
(Description Provided by CVE) : The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in (1) pass_wd.htm and (2) Wsecurity.htm, which allows remote attackers to obtain sensitive information by reading the HTML source code.
|
2009-04-25
|
Cisco Linksys WVC54GCA IP Camera pass_wd.htm Cleartext Password / Keys Disclosure
|
|
56398
Description:
(Description Provided by CVE) : The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in (1) pass_wd.htm and (2) Wsecurity.htm, which allows remote attackers to obtain sensitive information by reading the HTML source code.
|
2009-04-25
|
Cisco Linksys WVC54GCA IP Camera Wsecurity.htm Cleartext Password / Keys Disclosure
|
|
77567
Description:
Multiple SepCity products contain a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to certain unspecified input not being properly sanitized before use in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2009-04-25
|
SepCity Multiple Product Unspecified SQL Injection
|
|
54695
Description:
Unknown / Incomplete
|
2009-04-24
|
OrangeHRM Unspecified XSS
|
|
54696
Description:
Unknown / Incomplete
|
2009-04-24
|
OrangeHRM Report Name XSS
|
|
54697
Description:
Unknown / Incomplete
|
2009-04-24
|
OrangeHRM ESS User Mod Information Disclosure
|
|
55058
Description:
(Description Provided by CVE) : Off-by-one error in the apr_brigade_vprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote attackers to obtain sensitive information or cause a denial of service (application crash) via crafted input.
|
2009-04-24
|
Apache APR-util apr_brigade_vprintf Function Crafted Input Off-by-one Remote DoS
|
|
56058
Description:
Unknown / Incomplete
|
2009-04-24
|
Formshield Captcha Image Replay Verification Bypass
|
|
53939
Description:
PJBlog3 contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'action.asp' script not properly sanitizing user-supplied input to the 'cname' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-04-24
|
PJBlog3 action.asp cname Parameter SQL Injection
|
|
53941
Description:
Unknown / Incomplete
|
2009-04-24
|
Scorpio Framework baseAdminSite Implementation view Action Object Restriction Bypass
|
|
53947
Description:
Unknown / Incomplete
|
2009-04-24
|
CS DNS Lookup index.php ip Parameter Arbitrary Shell Command Execution
|
|
53948
Description:
Unknown / Incomplete
|
2009-04-24
|
CS Whois Lookup index.php ip Arbitrary Shell Command Execution
|
|
54090
Description:
(Description Provided by CVE) : Stack-based buffer overflow in Streaming Download Project (SDP) Downloader 2.3.0 allows remote attackers to execute arbitrary code via a long .asf URL in the HREF attribute of a REF element in a .asx file.
|
2009-04-24
|
SDP Downloader ASX File Handling Overflow
|
|
54104
Description:
(Description Provided by CVE) : Heap-based buffer overflow in the loadexponentialfunc function in mupdf/pdf_function.c in MuPDF in the mupdf-20090223-win32 package, as used in SumatraPDF 0.9.3 and earlier, allows remote attackers to execute arbitrary code via a crafted PDF file. NOTE: some of these details are obtained from third party information.
|
2009-04-24
|
MuPDF pdf_function.c loadexponentialfunc() Function Overflow
|
|
54162
Description:
Pragyan CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'fileget' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-04-24
|
Pragyan CMS index.php fileget Parameter SQL Injection
|
|
54196
Description:
(Description Provided by CVE) : Absolute Form Processor XE 1.5 allows remote attackers to bypass authentication and gain administrative access by setting the xlaAFPadmin cookie to "lvl=1&userid=1."
|
2009-04-24
|
Absolute Form Processor XE xlaAFPadmin Cookie Manipulation Admin Authentication Bypass
|
|
56045
Description:
Photo-Rigma.BiZ contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'uid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-04-24
|
Photo-Rigma.BiZ index.php uid Parameter SQL Injection
|
|
56005
Description:
Juniper NetScreen contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting the about.html page, which will disclose version of ScreenOS and patch level used and the feature set which results in a loss of confidentiality.
|
2009-04-24
|
Juniper Netscreen ScreenOS about.html Information Disclosure
|
|
56003
Description:
Unknown / Incomplete
|
2009-04-24
|
SumatraPDF mupdf/mupdf/pdf_function.c PDF Handling Overflow
|
|
56044
Description:
Photo-Rigma.BiZ contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'search' action. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-04-24
|
Photo-Rigma.BiZ index.php search Action SQL Injection
|
|
56043
Description:
Unknown / Incomplete
|
2009-04-24
|
Photo-Rigma.BiZ index.php search Action XSS
|
|
54693
Description:
Unknown / Incomplete
|
2009-04-23
|
Aruba Mobility Controller Public Key SSH Unspecified Authentication Bypass
|
