SQL injection vulnerability in the Car (car) extension before 0.1.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36131 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/
SQL injection vulnerability in the AST ZipCodeSearch (ast_addresszipsearch) extension 0.5.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36135 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/
SQL injection vulnerability in the AIRware Lexicon (air_lexicon) extension 0.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36130 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/
Stack-based buffer overflow in KSP 2006 FINAL allows remote attackers to execute arbitrary code via a long string in a .M3U playlist file. Date published : 2010-07-27 http://www.exploit-db.com/exploits/9486 http://www.vupen.com/english/advisories/2009/2393
Cross-site scripting (XSS) vulnerability in the Commerce extension before 0.9.9 for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36133 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-011/
Stack-based buffer overflow in Fat Player 0.6b allows remote attackers to execute arbitrary code via a long string in a .wav file. NOTE: some of these details are obtained from third party information. Date...
Lanai Core 0.6 allows remote attackers to obtain configuration information via a direct request to info.php, which calls the phpinfo function. Date published : 2010-07-27 http://www.exploit-db.com/exploits/9490
Directory traversal vulnerability in modules/backup/download.php in Lanai Core 0.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter. Date published : 2010-07-27 http://www.exploit-db.com/exploits/9490 http://www.vupen.com/english/advisories/2009/2402
SQL injection vulnerability in the T3M E-Mail Marketing Tool (t3m) extension 0.2.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-07-27 http://www.securityfocus.com/bid/36140 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-012
SQL injection vulnerability in video.php in EMO Breeder Manager (aka EMO Breader Manager) allows remote attackers to execute arbitrary SQL commands via the idd parameter. Date published : 2010-07-27 http://www.exploit-db.com/exploits/9518 http://secunia.com/advisories/36464
Buffer overflow in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long HTTP request to nnmrptconfig.exe. Date published : 2010-07-27 http://www.securityfocus.com/bid/41839 http://www.securityfocus.com/archive/1/512543/100/0/threaded
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbitrary code via...
The NetworkSyncCommandQueue function in network/network_command.cpp in OpenTTD before 1.0.3 does not properly clear a pointer in a linked list, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption)...
Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service (hang) via a crafted echo response. Date published : 2010-07-27 http://www.securityfocus.com/bid/41911...