260361
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0537
|
2010-06-18 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260362
|
- |
|
notsopureedit
|
notsopureedit
|
PHP remote file inclusion vulnerability in templates/template.php in notsoPureEdit 1.4.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL…
|
CWE-94
Code Injection
|
CVE-2010-1216
|
2010-06-18 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260363
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
NetAuthSysAgent in Network Authorization in Apple Mac OS X 10.5.8 does not have the expected authorization requirements, which allows local users to gain privileges via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2010-1375
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260364
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Multiple format string vulnerabilities in Network Authorization in Apple Mac OS X 10.6 before 10.6.4 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) …
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-1376
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260365
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an unencrypted connection upon certain SSL failures, which allows man-in-the-middle attackers to spoof arbitrary network account servers, a…
|
CWE-310
Cryptographic Issues
|
CVE-2010-1377
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260366
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Printer Setup in Apple Mac OS X 10.6 before 10.6.4 does not properly interpret character encoding, which allows remote attackers to cause a denial of service (printing failure) by deploying a printin…
|
CWE-20
Improper Input Validation
|
CVE-2010-1379
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260367
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Integer overflow in the cgtexttops CUPS filter in Printing in Apple Mac OS X 10.6 before 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via …
|
CWE-189
Numeric Errors
|
CVE-2010-1380
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260368
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
The default configuration of SMB File Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, enables support for wide links, which allows remote authenticated users to access arbitrary files via ve…
|
CWE-16
Configuration
|
CVE-2010-1381
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260369
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote authenticated users to inject arbitrary web script or HTML via crafted Wiki con…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1382
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260370
|
- |
|
tomatocms
|
tomatocms
|
Unrestricted file upload vulnerability in TomatoCMS 2.0.6 and earlier allows remote authenticated users, with certain privileges, to execute arbitrary PHP code by uploading an image file, and then ac…
|
NVD-CWE-Other
|
CVE-2010-1514
|
2010-06-18 13:00 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|