259471
|
- |
|
mojolicious
|
mojolicious
|
Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified impact and remote attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2010-4802
|
2011-08-27 12:46 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259472
|
- |
|
mojolicious
|
mojolicious
|
Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2010-4803
|
2011-08-27 12:46 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259473
|
- |
|
alexej_kryukov
|
fontforge
|
Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long CHARSET_REGISTRY header in a B…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4259
|
2011-08-27 12:45 |
2010-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259474
|
- |
|
dovecot
|
dovecot
|
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a direc…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3707
|
2011-08-27 12:44 |
2010-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259475
|
- |
|
dovecot
|
dovecot
|
Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause a denial of service (master process outage) by simultaneously disconnecting many (1) IMAP or (2) POP3 sessions.
|
NVD-CWE-Other
|
CVE-2010-3780
|
2011-08-27 12:44 |
2010-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259476
|
- |
|
libguestfs
|
libguestfs
|
libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files …
|
CWE-200
Information Exposure
|
CVE-2010-3851
|
2011-08-27 12:44 |
2010-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259477
|
- |
|
otrs
|
otrs
|
webscript.pl in Open Ticket Request System (OTRS) 2.3.4 and earlier allows remote attackers to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability."
|
CWE-78
OS Command
|
CVE-2011-0456
|
2011-08-26 13:00 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259478
|
- |
|
aimluck
|
aipo aipo-asp
|
SQL injection vulnerability in Aimluck Aipo before 5.1.1, and Aipo for ASP before 5.1.1, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2011-1342
|
2011-08-26 13:00 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259479
|
- |
|
t-dreams
|
cars_ads_package
|
SQL injection vulnerability in processview.asp in Techno Dreams (T-Dreams) Cars Ads Package 2.0 allows remote attackers to execute arbitrary SQL commands via the key parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4829
|
2011-08-25 13:00 |
2011-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259480
|
- |
|
ozeki
|
http-sms_gateway
|
Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores usernames and passwords in plaintext in the HKLM\Software\Ozeki\SMSServer\CurrentVersion\Plugins\httpsmsgate registry key, which allows local …
|
CWE-310
Cryptographic Issues
|
CVE-2006-6674
|
2011-08-25 13:00 |
2006-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|