The rendering implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Date published : 2010-07-28 http://code.google.com/p/chromium/issues/detail?id=47866 http://googlechromereleases.blogspot.com/2010/07/stable-channel-update_26.html
Google Chrome before 5.0.375.125 does not properly handle a large canvas, which has unspecified impact and remote attack vectors. Date published : 2010-07-28 http://code.google.com/p/chromium/issues/detail?id=43813 http://googlechromereleases.blogspot.com/2010/07/stable-channel-update_26.html
Unspecified vulnerability in the layout implementation in Google Chrome before 5.0.375.125 allows remote attackers to obtain sensitive information from process memory via unknown vectors. Date published : 2010-07-28 http://code.google.com/p/chromium/issues/detail?id=42736 http://googlechromereleases.blogspot.com/2010/07/stable-channel-update_26.html
Google Chrome before 5.0.375.125 does not properly mitigate an unspecified flaw in the GNU C Library, which has unknown impact and attack vectors. Date published : 2010-07-28 http://code.google.com/p/chromium/issues/detail?id=48733 http://googlechromereleases.blogspot.com/2010/07/stable-channel-update_26.html
Google Chrome before 5.0.375.125 does not properly mitigate an unspecified flaw in the Windows kernel, which has unknown impact and attack vectors. Date published : 2010-07-28 http://code.google.com/p/chromium/issues/detail?id=48283 http://googlechromereleases.blogspot.com/2010/07/stable-channel-update_26.html
IBM FileNet Content Manager (CM) 4.0.0, 4.0.1, 4.5.0, and 4.5.1 before FP4 does not properly manage the InheritParentPermissions setting during an upgrade from 3.x, which might allow attackers to bypass intended folder permissions via...
The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path. Date...
Directory traversal vulnerability in box_display.php in TotalCalendar 2.4 allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the box parameter. Date published : 2010-07-27...
SQL injection vulnerability in rss.php in TotalCalendar 2.4 allows remote attackers to execute arbitrary SQL commands via the selectedCal parameter in a SwitchCal action. Date published : 2010-07-27 http://www.exploit-db.com/exploits/9524
Cross-site scripting (XSS) vulnerability in index.php (aka the log in page) in SimpleID before 0.6.5 allows remote attackers to inject arbitrary web script or HTML via the s parameter. Date published : 2010-07-27 http://simpleid.sourceforge.net/advisories/sa-2009-1...
SQL injection vulnerability in the AJAX Chat (vjchat) extension before 0.3.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36141 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/
SQL injection vulnerability in the t3m_affiliate extension 0.5.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36138 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/
SQL injection vulnerability in the Solidbase Bannermanagement (SBbanner) extension 1.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36137 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/
SQL injection vulnerability in the Event Registration (event_registr) extension 1.0.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36136 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/