260361
|
- |
|
ibm
|
websphere_application_server
|
The HTTP Channel in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11 allows remote attackers to cause a denial of service (NullPointerException) via a large amount of chunked data that uses…
|
NVD-CWE-Other
|
CVE-2010-2328
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260362
|
- |
|
upredsun
|
isharer_file_sharing_wizard
|
Stack-based buffer overflow in iSharer File Sharing Wizard 1.5.0 allows remote attackers to execute arbitrary code via a long HEAD request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2331
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260363
|
- |
|
yamamah
|
yamamah
|
Directory traversal vulnerability in themes/default/download.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to read arbitrary files via a .. (dot dot) in t…
|
CWE-22
Path Traversal
|
CVE-2010-2334
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260364
|
- |
|
arabportal
|
arab_portal
|
SQL injection vulnerability in members.php in Arab Portal 2.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the by parameter in the msearch action.
|
CWE-89
SQL Injection
|
CVE-2010-2340
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260365
|
- |
|
unrealircd
|
unrealircd
|
UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 through June 2010, contains an externally introduced modification (Trojan Horse) in the DEBUG3_DOLOG_SYSTEM macro, which …
|
CWE-20
Improper Input Validation
|
CVE-2010-2075
|
2010-06-18 14:36 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260366
|
- |
|
unrealircd
|
unrealircd
|
Per: http://www.unrealircd.com/txt/unrealsecadvisory.20100612.txt
'Official precompiled Windows binaries (SSL and non-ssl) are NOT affected.
CVS is also not affected.
3.2.8 and any earlier v…
|
CWE-20
Improper Input Validation
|
CVE-2010-2075
|
2010-06-18 14:36 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260367
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0537
|
2010-06-18 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260368
|
- |
|
notsopureedit
|
notsopureedit
|
PHP remote file inclusion vulnerability in templates/template.php in notsoPureEdit 1.4.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL…
|
CWE-94
Code Injection
|
CVE-2010-1216
|
2010-06-18 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260369
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
NetAuthSysAgent in Network Authorization in Apple Mac OS X 10.5.8 does not have the expected authorization requirements, which allows local users to gain privileges via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2010-1375
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260370
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Multiple format string vulnerabilities in Network Authorization in Apple Mac OS X 10.6 before 10.6.4 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) …
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-1376
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|