|
260251
|
- |
|
mortbay
|
jetty
|
Cross-site scripting (XSS) vulnerability in Mort Bay Jetty before 6.1.17 allows remote attackers to inject arbitrary web script or HTML via a directory listing request containing a ; (semicolon) char…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1524
|
2010-07-20 14:36 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260252
|
- |
|
sun
|
openoffice.org
|
Heap-based buffer overflow in svtools/source/filter.vcl/wmf/enhwmf.cxx in Go-oo 2.x and 3.x before 3.0.1, previously named ooo-build and related to OpenOffice.org (OOo), allows remote attackers to ex…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2139
|
2010-07-19 13:00 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260253
|
- |
|
alanzard
|
tsoka\
|
Cross-site scripting (XSS) vulnerability in index.php in TSOKA:CMS 1.1, 1.9, and 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in an articolo action.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2675
|
2010-07-16 13:00 |
2010-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260254
|
- |
|
pedro_lineu_orso
|
chetcpasswd
|
Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long REMOTE_ADDR environ…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2006-6685
|
2010-07-16 13:00 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260255
|
- |
|
rightinpoint
|
lyrics_engine
|
Cross-site scripting (XSS) vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artist_id parameter, which is not proper…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2722
|
2010-07-15 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260256
|
- |
|
freebsd
|
freebsd
|
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2693
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260257
|
- |
|
lsoft
|
listserv
|
Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2723
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260258
|
- |
|
litespeedtech
|
litespeed_web_server
|
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
|
CWE-200
Information Exposure
|
CVE-2010-2333
|
2010-07-13 14:52 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260259
|
- |
|
qsoft-inc
|
k-search
|
Cross-site scripting (XSS) vulnerability in index.php in K-Search allows remote attackers to inject arbitrary web script or HTML via the term parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2457
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260260
|
- |
|
s2sys
linearcorp
sonitrol
|
netbox
emerge_50
emerge_5000
eaccess
|
The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which al…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2465
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
