|
260511
|
- |
|
emultisoft
|
com_jnewspaper
|
SQL injection vulnerability in the Online News Paper Manager (com_jnewspaper) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter to index.php. N…
|
CWE-89
SQL Injection
|
CVE-2010-1949
|
2010-05-19 21:07 |
2010-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260512
|
- |
|
emultisoft
|
com_jnewspaper
|
SQL injection vulnerability in the Online News Paper Manager (com_jnewspaper) component 1.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands v…
|
CWE-89
SQL Injection
|
CVE-2010-1950
|
2010-05-19 21:07 |
2010-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260513
|
- |
|
joomlacomponent.inetlanka
|
com_multimap
|
Directory traversal vulnerability in the iNetLanka Multiple Map (com_multimap) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter…
|
CWE-22
Path Traversal
|
CVE-2010-1953
|
2010-05-19 21:07 |
2010-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260514
|
- |
|
joomlacomponent.inetlanka
|
com_multiroot
|
Directory traversal vulnerability in the iNetLanka Multiple root (com_multiroot) component 1.0 and 1.1 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller…
|
CWE-22
Path Traversal
|
CVE-2010-1954
|
2010-05-19 21:07 |
2010-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260515
|
- |
|
cisco
|
ironport_desktop_flag_plugin_for_outlook
|
The Send Secure functionality in the Cisco IronPort Desktop Flag Plug-in for Outlook before 6.5.0-006 does not properly handle simultaneously composed messages, which might allow remote attackers to …
|
CWE-310
Cryptographic Issues
|
CVE-2010-1568
|
2010-05-17 13:00 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260516
|
- |
|
alvaro
|
alvaros_messenger
|
aMSN (aka Alvaro's Messenger) 0.98.3 and earlier, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Nam…
|
CWE-287
Improper Authentication
|
CVE-2010-0744
|
2010-05-14 14:49 |
2010-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260517
|
- |
|
adobe
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in the Administrator page in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-1293
|
2010-05-14 13:00 |
2010-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260518
|
- |
|
adobe
|
coldfusion
|
Per: http://www.adobe.com/support/security/bulletins/apsb10-11.html
'Affected software versions
ColdFusion 8.0, 8.0.1, 9.0 and earlier versions for Windows, Macintosh and UNIX'
|
CWE-79
Cross-site Scripting
|
CVE-2010-1293
|
2010-05-14 13:00 |
2010-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260519
|
- |
|
adobe
|
coldfusion
|
Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows local users to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
CWE-200
Information Exposure
|
CVE-2010-1294
|
2010-05-14 13:00 |
2010-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260520
|
- |
|
adobe
|
coldfusion
|
Per: http://www.adobe.com/support/security/bulletins/apsb10-11.html
'Affected software versions
ColdFusion 8.0, 8.0.1, 9.0 and earlier versions for Windows, Macintosh and UNIX'
|
NVD-CWE-noinfo
CWE-200
Information Exposure
|
CVE-2010-1294
|
2010-05-14 13:00 |
2010-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
