259611
|
- |
|
livezilla
|
livezilla
|
Cross-site scripting (XSS) vulnerability in the lz_tracking_set_sessid function in templates/jscript/jstrack.tpl in LiveZilla 3.2.0.2 allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4276
|
2011-01-11 15:46 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259612
|
- |
|
earl_miles
|
views
|
Cross-site scripting (XSS) vulnerability in the Views module 6.x before 6.x-2.12 for Drupal allows remote attackers to inject arbitrary web script or HTML via a page path.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4521
|
2011-01-11 15:46 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259613
|
- |
|
ibm
|
enovia
|
Cross-site scripting (XSS) vulnerability in IBM ENOVIA 6 allows remote attackers to inject arbitrary web script or HTML via vectors related to the emxFramework.FilterParameterPattern property.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4589
|
2011-01-11 15:46 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259614
|
- |
|
ibm
|
lotus_mobile_connect
|
The Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not delete LTPA tokens in response to use of the iNotes Logoff button, whic…
|
CWE-287
Improper Authentication
|
CVE-2010-4591
|
2011-01-11 15:46 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259615
|
- |
|
ibm
|
lotus_mobile_connect
|
The Mobile Network Connections functionality in the Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not properly handle failed attemp…
|
CWE-399
Resource Management Errors
|
CVE-2010-4592
|
2011-01-11 15:46 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259616
|
- |
|
ibm
|
lotus_mobile_connect
|
The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 does not properly maintain a certain reference count, which allows remote authenticated users to cause a denial of service (IP address …
|
CWE-399
Resource Management Errors
|
CVE-2010-4593
|
2011-01-11 15:46 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259617
|
- |
|
ecava
|
integraxor
|
Stack-based buffer overflow in the save method in the IntegraXor.Project ActiveX control in igcomm.dll in Ecava IntegraXor Human-Machine Interface (HMI) before 3.5.3900.10 allows remote attackers to …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4597
|
2011-01-11 15:46 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259618
|
- |
|
ecava
|
integraxor
|
Untrusted search path vulnerability in Ecava IntegraXor 3.6.4000.0 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory. NOTE: the provenance of …
|
NVD-CWE-Other
|
CVE-2010-4599
|
2011-01-11 15:46 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259619
|
- |
|
ecava
|
integraxor
|
Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2010-4599
|
2011-01-11 15:46 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259620
|
- |
|
ibm
|
rational_quality_manager rational_test_lab_manager
|
The Tomcat server in IBM Rational Quality Manager and Rational Test Lab Manager has a default password for the ADMIN account, which makes it easier for remote attackers to execute arbitrary code by l…
|
CWE-255
Credentials Management
|
CVE-2010-4094
|
2011-01-11 15:45 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|