|
260351
|
- |
|
dmxready
|
online_notebook_manager
|
SQL injection vulnerability in onlinenotebookmanager.asp in DMXReady Online Notebook Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2342
|
2010-06-22 00:30 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260352
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Server Admin in Apple Mac OS X Server before 10.6.3 does not properly enforce authentication for directory binding, which allows remote attackers to obtain potentially sensitive information from Open…
|
CWE-287
Improper Authentication
|
CVE-2010-0521
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260353
|
- |
|
apple
|
mac_os_x_server
|
Server Admin in Apple Mac OS X Server 10.5.8 does not properly determine the privileges of users who had former membership in the admin group, which allows remote authenticated users to leverage this…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0522
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260354
|
- |
|
apple
|
mac_os_x_server
|
Wiki Server in Apple Mac OS X 10.5.8 does not restrict the file types of uploaded files, which allows remote attackers to obtain sensitive information or possibly have unspecified other impact via a …
|
CWE-200
Information Exposure
|
CVE-2010-0523
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260355
|
- |
|
apple
|
mac_os_x_server
|
Per: http://support.apple.com/kb/HT4077
'This issue only affects Mac OS X Server systems, and does not affect versions 10.6 or later.'
|
CWE-200
Information Exposure
|
CVE-2010-0523
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260356
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Mail in Apple Mac OS X before 10.6.3 does not properly enforce the key usage extension during processing of a keychain that specifies multiple certificates for an e-mail recipient, which might make i…
|
CWE-310
Cryptographic Issues
|
CVE-2010-0525
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260357
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the service access control list (SACL) for weblogs during weblog creation, which allows remote authenticated users to publish content…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0534
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260358
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is enabled, does not properly enforce the service access control list (SACL) for sending and receiving e-mail, which allows remote authenti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0535
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260359
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11, when addNode -trace is used during node federation, allows attackers to obtain sensitive information about CIMMetadataCollectorImpl trace a…
|
CWE-200
Information Exposure
|
CVE-2010-2326
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260360
|
- |
|
ibm
|
websphere_application_server
|
mod_ibm_ssl in IBM HTTP Server 6.0 before 6.0.2.43, 6.1 before 6.1.0.33, and 7.0 before 7.0.0.11, as used in IBM WebSphere Application Server (WAS) on z/OS, does not properly handle a large HTTP requ…
|
CWE-20
Improper Input Validation
|
CVE-2010-2327
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
