|
259611
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in AppKit in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a bidirectional text string wit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1842
|
2011-01-12 15:49 |
2010-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259612
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in Image Capture in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to cause a denial of service (memory consumption and system crash) via a crafted image.
|
CWE-20
Improper Input Validation
|
CVE-2010-1844
|
2011-01-12 15:49 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259613
|
- |
|
phpf1
|
max\'s_image_uploader
|
Unrestricted file upload vulnerability in maxImageUpload/index.php in PHP F1 Max's Image Uploader 1.0, when Apache is not configured to handle the mime-type for files with pjpeg or jpeg extensions, a…
|
NVD-CWE-Other
|
CVE-2010-0390
|
2011-01-12 14:00 |
2010-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259614
|
- |
|
phpf1
|
max\'s_image_uploader
|
Per: http://cwe.mitre.org/data/definitions/434.html
'CWE-434: Unrestricted Upload of File with Dangerous Type'
|
NVD-CWE-Other
|
CVE-2010-0390
|
2011-01-12 14:00 |
2010-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259615
|
- |
|
embarcadero
|
interbase_smp_2009
|
Multiple stack-based buffer overflows in Embarcadero Technologies InterBase SMP 2009 9.0.3.437 allow remote attackers to execute arbitrary code via unknown vectors involving crafted packets. NOTE: t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0391
|
2011-01-12 14:00 |
2010-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259616
|
- |
|
clear
|
ispot_firmware
ispot
clearspot_firmware
clearspot
|
Multiple cross-site request forgery (CSRF) vulnerabilities on the iSpot 2.0.0.0 R1679, and the ClearSpot 2.0.0.0 R1512 and R1786, with firmware 1.9.9.4 allow remote attackers to hijack the authentica…
|
CWE-352
Origin Validation Error
|
CVE-2010-4507
|
2011-01-12 14:00 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259617
|
- |
|
livezilla
|
livezilla
|
Cross-site scripting (XSS) vulnerability in the lz_tracking_set_sessid function in templates/jscript/jstrack.tpl in LiveZilla 3.2.0.2 allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4276
|
2011-01-11 15:46 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259618
|
- |
|
earl_miles
|
views
|
Cross-site scripting (XSS) vulnerability in the Views module 6.x before 6.x-2.12 for Drupal allows remote attackers to inject arbitrary web script or HTML via a page path.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4521
|
2011-01-11 15:46 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259619
|
- |
|
ibm
|
enovia
|
Cross-site scripting (XSS) vulnerability in IBM ENOVIA 6 allows remote attackers to inject arbitrary web script or HTML via vectors related to the emxFramework.FilterParameterPattern property.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4589
|
2011-01-11 15:46 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259620
|
- |
|
ibm
|
lotus_mobile_connect
|
The Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not delete LTPA tokens in response to use of the iNotes Logoff button, whic…
|
CWE-287
Improper Authentication
|
CVE-2010-4591
|
2011-01-11 15:46 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
