CVE-2009-4969

SQL injection vulnerability in the Solidbase Bannermanagement (SBbanner) extension 1.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Publication date: Wed, 28 Jul 2010 19:43:00 +0000

Cyber News related to CVE-2009-4969

CVE-2009-3403 - Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.4: JRE/JDK, 1.4.2, 5, and, and 6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this issue subsumes ...
11 years ago

CVE-2013-5989 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2011-4969. Reason: This candidate is a duplicate of CVE-2011-4969. Notes: All CVE users should reference CVE-2011-4969 instead of this candidate. All references and descriptions in ...
54 years ago Tenable.com

AMD, Apple, Qualcomm GPUs leak AI data in LeftoverLocals attacks - A new vulnerability dubbed 'LeftoverLocals' affecting graphics processing units from AMD, Apple, Qualcomm, and Imagination Technologies allows retrieving data from the local memory space. Tracked as CVE-2023-4969, the security issue enables data ...
5 months ago Bleepingcomputer.com

CVE-2010-0079 - Multiple vulnerabilities in the JRockit component in BEA Product Suite R27.6.5 using JRE/JDK 1.4.2, 5, and 6 allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this CVE identifier overlaps ...
11 years ago

CVE-2009-3239 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2139, CVE-2009-2140. Reason: This candidate is a duplicate of CVE-2009-2139 and CVE-2009-2140. Notes: All CVE users should reference CVE-2009-2139 and CVE-2009-2140 instead of ...
54 years ago Tenable.com

CVE-2009-4212 - Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly ...
4 years ago

CVE-2009-4969 - SQL injection vulnerability in the Solidbase Bannermanagement (SBbanner) extension 1.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. ...
13 years ago

CVE-2013-0244 - Cross-site scripting (XSS) vulnerability in Drupal 6.x before 6.28 and 7.x before 7.19, when running with older versions of jQuery that are vulnerable to CVE-2011-4969, allows remote attackers to inject arbitrary web script or HTML via vectors ...
10 years ago

CVE-2013-4969 - Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files. ...
2 years ago

CVE-2010-4969 - SQL injection vulnerability in articlesdetails.php in BrotherScripts (BS) Business Directory allows remote attackers to execute arbitrary SQL commands via the id parameter. ...
12 years ago

CVE-2016-4969 - Cross-site scripting (XSS) vulnerability in Fortinet FortiWan (formerly AscernLink) before 4.2.5 allows remote attackers to inject arbitrary web script or HTML via the IP parameter to script/statistics/getconn.php. ...
7 years ago

CVE-2008-4969 - ltp-network-test 20060918 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/vsftpd.conf, (b) /tmp/udp/2/*, (c) /tmp/tcp/2/*, (d) /tmp/udp/3/*, (e) /tmp/tcp/3/*, (f) /tmp/nfs_fsstress.udp.2.log, (g) ...
6 years ago

CVE-2006-4969 - Multiple PHP remote file inclusion vulnerabilities in WAHM E-Commerce Pie Cart Pro allow remote attackers to execute arbitrary PHP code via a URL in the Inc_Dir parameter in (1) affiliates.php, (2) orders.php, (3) events.php, (4) index.php, (5) ...
6 years ago

CVE-2012-4969 - Use-after-free vulnerability in the CMshtmlEd::Exec function in mshtml.dll in Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code via a crafted web site, as exploited in the wild in September 2012. ...
6 years ago

CVE-2007-4969 - Process Monitor 1.22 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via unspecified kernel SSDT ...
5 years ago

CVE-2011-4969 - Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag. ...
5 years ago

CVE-2018-4969 - Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. ...
4 years ago

CVE-2017-4969 - The Cloud Controller in Cloud Foundry cf-release versions prior to v255 allows authenticated developer users to exceed memory and disk quotas for tasks. ...
4 years ago

CVE-2020-4969 - IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain ...
3 years ago

CVE-2022-1735 - Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969. ...
1 year ago

CVE-2023-4969 - A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures. ...
5 months ago

CVE-2022-4969 - A vulnerability, which was classified as critical, has been found in bwoodsend rockhopper up to 0.1.2. Affected by this issue is the function count_rows of the file rockhopper/src/ragged_array.c of the component Binary Parser. The manipulation of the ...
1 month ago

CVE-2024-4969 - The Widget Bundle WordPress plugin through 2.0.0 does not have CSRF checks when logging Widgets, which could allow attackers to make logged in admin enable/disable widgets via a CSRF attack ...
1 week ago

CVE-2009-4778 - Multiple unspecified vulnerabilities in the PDF distiller in the Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 4.1.3 through 4.1.7 and 5.0.0, and BlackBerry Professional Software 4.1.4, allow ...
14 years ago

CVE-2009-0795 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-0796, CVE-2009-1265. Reason: this candidate was intended for one issue, but a typo caused it to be associated with a different issue. Notes: All CVE users should consult ...
54 years ago Tenable.com

Latest Cyber News

CVE-2024-40605 - 9 hours ago
CVE-2024-40604 - 9 hours ago
CVE-2024-40603 - 9 hours ago
CVE-2024-40602 - 9 hours ago
CVE-2024-40601 - 9 hours ago
CVE-2024-40600 - 9 hours ago
CVE-2024-40599 - 9 hours ago
CVE-2024-40598 - 9 hours ago
CVE-2024-40596 - 9 hours ago
CVE-2024-40597 - 9 hours ago
CVE-2024-6095 - 15 hours ago
CVE-2024-37554 - 16 hours ago
CVE-2024-37553 - 17 hours ago
CVE-2024-37547 - 18 hours ago
CVE-2024-37546 - 18 hours ago
CVE-2024-37542 - 20 hours ago
CVE-2024-37541 - 20 hours ago
CVE-2024-37539 - 20 hours ago
CVE-2024-39486 - 23 hours ago
CVE-2024-37260 - 23 hours ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 7 months ago
Kimsuky - 7 months ago
LogoFAIL - 6 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

CVE-2024-40605 - 9 hours ago
CVE-2024-40604 - 9 hours ago
CVE-2024-40603 - 9 hours ago
CVE-2024-40602 - 9 hours ago
CVE-2024-40601 - 9 hours ago
CVE-2024-40600 - 9 hours ago
CVE-2024-40599 - 9 hours ago
CVE-2024-40598 - 9 hours ago
CVE-2024-40596 - 9 hours ago
CVE-2024-40597 - 9 hours ago
CVE-2024-6095 - 15 hours ago
CVE-2024-37553 - 17 hours ago
CVE-2024-37554 - 16 hours ago
CVE-2024-37547 - 18 hours ago
CVE-2024-37546 - 18 hours ago
CVE-2024-37542 - 20 hours ago
CVE-2024-37541 - 20 hours ago
CVE-2024-37539 - 20 hours ago
CVE-2024-39486 - 23 hours ago
CVE-2024-37260 - 23 hours ago