CVE-2008-4629

Cross-site scripting (XSS) vulnerability in Usagi Project MyNETS 1.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Publication date: Tue, 21 Oct 2008 06:18:00 +0000

Cyber News related to CVE-2008-4629

CVE-2009-0245 - Cross-site scripting (XSS) vulnerability in Usagi Project MyNETS 1.2.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-4629. ...
15 years ago

CVE-2008-4629 - Cross-site scripting (XSS) vulnerability in Usagi Project MyNETS 1.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. ...
7 years ago

CVE-2005-4629 - SQL injection vulnerability in SMBCMS 2.1 allows remote attackers to execute arbitrary SQL commands via unspecified search parameters. ...
16 years ago

CVE-2009-4629 - Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APP_TYPE_MAIL or APP_TYPE_EDITOR, which makes it easier for remote attackers to determine the network location of the ...
14 years ago

CVE-2012-4629 - The Cisco ASA-CX Context-Aware Security module before 9.0.2-103 for Adaptive Security Appliances (ASA) devices, and Prime Security Manager (aka PRSM) before 9.0.2-103, allows remote attackers to cause a denial of service (disk consumption and ...
11 years ago

CVE-2013-4629 - The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated users to hijack sessions via an unspecified ...
11 years ago

CVE-2007-4629 - Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name. ...
8 years ago

CVE-2010-4629 - MyBB (aka MyBulletinBoard) before 1.4.12 does not properly restrict uid values for group join requests, which allows remote attackers to cause a denial of service (resource consumption) by using guest access to submit join request forms for moderated ...
11 months ago

CVE-2016-4629 - ImageIO in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted xStride and yStride values in an EXR image. ...
11 months ago

CVE-2015-4629 - Huawei E5756S before V200R002B146D23SP00C00 allows remote attackers to read device configuration information, enable PIN/PUK authentication, and perform other unspecified actions. ...
7 years ago

CVE-2006-4629 - PHP remote file inclusion vulnerability in affichage/commentaires.php in C-News.fr C-News 1.0.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. ...
7 years ago

CVE-2014-4629 - EMC Documentum Content Server 7.0, 7.1 before 7.1 P10, and 6.7 before SP2 P19 allows remote authenticated users to read or delete arbitrary files via unspecified vectors related to an insecure direct object reference. ...
6 years ago

CVE-2011-4629 - Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary web script or HTML via the admin panel. ...
5 years ago

CVE-2020-4629 - IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local user with specialized access to obtain sensitive information from a detailed technical error message. This information could be used in further attacks against the system. ...
4 years ago

CVE-2022-4629 - The Product Slider for WooCommerce WordPress plugin before 2.6.4 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored ...
1 year ago

CVE-2018-4629 - ** REJECT ** This candidate is unused by its CNA. ...
1 year ago

CVE-2017-4629 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none ...
54 years ago Tenable.com

CVE-2023-4629 - The LadiApp plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the save_config() function in versions up to, and including, 4.3. This makes it possible for unauthenticated attackers to update the ...
8 months ago

CVE-2024-4629 - A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed ...
2 months ago

CVE-2008-1378 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-2360, CVE-2008-2361, CVE-2008-2362. Reason: This candidate has been withdrawn by its CNA. It was SPLIT into separate candidates before publication. Notes: All CVE users should ...
54 years ago Tenable.com

CVE-2008-2617 - Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.17 and 8.49.11 has unknown impact and remote authenticated attack vectors, a different vulnerability than ...
7 years ago

CVE-2008-2615 - Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.17 and 8.49.11 has unknown impact and remote authenticated attack vectors, a different vulnerability than ...
7 years ago

CVE-2008-2621 - Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.17 and 8.49.11 has unknown impact and remote authenticated attack vectors, a different vulnerability than ...
7 years ago

CVE-2008-2622 - Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.17 and 8.49.11 has unknown impact and remote authenticated attack vectors, a different vulnerability than ...
7 years ago

CVE-2008-2616 - Unspecified vulnerability in the PeopleSoft PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.17 and 8.49.11 has unknown impact and remote authenticated attack vectors, a different vulnerability than ...
7 years ago

Latest Cyber News

CVE-2024-11032 - 17 hours ago
CVE-2024-11680 - 17 hours ago
CVE-2024-9170 - 18 hours ago
CVE-2018-11952 - 18 hours ago
CVE-2024-11091 - 18 hours ago
CVE-2024-11119 - 18 hours ago
CVE-2024-11192 - 18 hours ago
CVE-2016-10394 - 18 hours ago
CVE-2017-11076 - 18 hours ago
CVE-2017-15832 - 18 hours ago
CVE-2017-17772 - 18 hours ago
CVE-2017-18153 - 18 hours ago
CVE-2018-11922 - 18 hours ago
CVE-2024-8772 - 19 hours ago
CVE-2024-9504 - 19 hours ago
CVE-2024-47257 - 19 hours ago
CVE-2024-6831 - 19 hours ago
CVE-2024-8160 - 19 hours ago
CVE-2024-34162 - 19 hours ago
CVE-2024-35244 - 19 hours ago

Cyber Trends (last 7 days)

Okta - 11 months ago
23andMe - 11 months ago
Kimsuky - 11 months ago
LogoFAIL - 11 months ago
Gh0st rat - 11 months ago

Trending Cyber News (last 7 days)

CVE-2024-11296 - 4 days ago
CVE-2024-11298 - 4 days ago
CVE-2023-7299 - 3 days ago
CVE-2024-53915 - 2 days ago
CVE-2024-11647 - 2 days ago
CVE-2024-11651 - 2 days ago
CVE-2024-11653 - 1 day ago
CVE-2020-11311 - 1 day ago
CVE-2024-10709 - 1 day ago
CVE-2024-7056 - 1 day ago
CVE-2024-11659 - 1 day ago
CVE-2024-11662 - 1 day ago
CVE-2021-23282 - 1 day ago
CVE-2022-33861 - 1 day ago
CVE-2020-12491 - 1 day ago
CVE-2020-12492 - 1 day ago
CVE-2024-11403 - 1 day ago
CVE-2024-11498 - 1 day ago
CVE-2024-27134 - 1 day ago
CVE-2024-11670 - 1 day ago