|
259651
|
- |
|
audiocoding
|
faad2
|
Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-4201
|
2011-01-3 14:00 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259652
|
- |
|
redhat
|
jboss_remoting
jboss_enterprise_application_platform
jboss_enterprise_web_platform
|
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run method in JBoss Remoting 2.2.x before 2.2.3.SP4 and 2.5.x before 2.5.3.SP2 in Red Hat JBoss Enterprise …
|
CWE-20
Improper Input Validation
|
CVE-2010-3862
|
2010-12-31 14:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259653
|
- |
|
mybb
|
mybb
|
Multiple cross-site scripting (XSS) vulnerabilities in MyBB (aka MyBulletinBoard) 1.4.14, and 1.6.x before 1.6.1, allow remote attackers to inject arbitrary web script or HTML via vectors related to …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4522
|
2010-12-31 14:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259654
|
- |
|
pilotcart
|
pilot_cart
|
Multiple SQL injection vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to execute arbitrary SQL commands via the (1) article parameter to kb.asp, (2) specific parameter to cart.asp, …
|
CWE-89
SQL Injection
|
CVE-2010-4632
|
2010-12-31 14:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259655
|
- |
|
iptechinside
|
com_jquarks4s
|
SQL injection vulnerability in the submitSurvey function in controller.php in JQuarks4s (com_jquarks4s) component 1.0.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to exec…
|
CWE-89
SQL Injection
|
CVE-2010-4638
|
2010-12-31 14:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259656
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_soa_platform
|
The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports…
|
CWE-20
Improper Input Validation
|
CVE-2010-3708
|
2010-12-31 06:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259657
|
- |
|
redhat
|
jboss_enterprise_application_platform
|
Cross-site request forgery (CSRF) vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 allows remote attackers to hijack th…
|
CWE-352
Origin Validation Error
|
CVE-2010-3878
|
2010-12-31 06:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259658
|
- |
|
mitsu_hiro_hi_rose
|
attachecase
|
Untrusted search path vulnerability in AttacheCase before 2.70 allows local users to gain privileges via a Trojan horse executable file in the current working directory.
|
NVD-CWE-Other
|
CVE-2010-3923
|
2010-12-31 06:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259659
|
- |
|
mitsu_hiro_hi_rose
|
attachecase
|
Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2010-3923
|
2010-12-31 06:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259660
|
- |
|
habariproject
|
habari
|
Habari 0.6.5 allows remote attackers to obtain sensitive information via a direct request to (1) header.php and (2) comments_items.php in system/admin/, which reveals the installation path in an erro…
|
CWE-200
Information Exposure
|
CVE-2010-4608
|
2010-12-30 14:00 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
