|
267141
|
- |
|
festic
|
semanticscuttle
|
Multiple cross-site scripting (XSS) vulnerabilities in SemanticScuttle before 0.94.1 allow remote attackers to inject arbitrary web script or HTML via the sort parameter to index.php, and other unspe…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4852
|
2010-05-10 13:00 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267142
|
- |
|
roshan_singh
|
open_direct_connect_hub
|
Stack-based buffer overflow in Open Direct Connect Hub (aka Open DC Hub or OpenDCHub) 0.8.1 allows remote authenticated users to execute arbitrary code via a long MyINFO message.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1147
|
2010-05-8 14:57 |
2010-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267143
|
- |
|
lexmark
|
25xxn
c510
c52x
c53x
c540
c543
c544
c546
c73x
c77x
c78x
c920
c935dn
e120
e238
e23x
e240
e240n
e250
e260
e33x
e34x
e350
e360d
e3…
|
The embedded HTTP server in multiple Lexmark laser and inkjet printers and MarkNet devices, including X94x, W840, T656, N4000, E462, C935dn, 25xxN, and other models, allows remote attackers to cause …
|
CWE-20
Improper Input Validation
|
CVE-2010-0101
|
2010-05-7 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267144
|
- |
|
carlos_eduardo_sotelo_pinto
|
0.1.0
|
PHP remote file inclusion vulnerability in core/includes/gfw_smarty.php in Gallo 0.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the confi…
|
CWE-94
Code Injection
|
CVE-2010-1737
|
2010-05-7 13:00 |
2010-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267145
|
- |
|
dolphin
|
dolphin_browser
|
Dolphin Browser 2.5.0 on the HTC Hero allows remote attackers to cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an infinite loop.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1730
|
2010-05-6 23:53 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267146
|
- |
|
phpmyadmin
|
phpmyadmin
|
scripts/setup.php (aka the setup script) in phpMyAdmin 2.11.x before 2.11.10 calls the unserialize function on the values of the (1) configuration and (2) v[0] parameters, which might allow remote at…
|
NVD-CWE-Other
|
CVE-2009-4605
|
2010-05-6 14:52 |
2010-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267147
|
- |
|
phpmyadmin
|
phpmyadmin
|
libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7251
|
2010-05-6 13:00 |
2010-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267148
|
- |
|
openttd
|
openttd
|
OpenTTD before 1.0.1 does not properly validate index values of certain items, which allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code v…
|
CWE-94
Code Injection
|
CVE-2010-0402
|
2010-05-5 22:22 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267149
|
- |
|
mochasoft
|
mocha_w32_lpd
|
Stack-based buffer overflow in lpd.exe in Mocha W32 LPD 1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted "recieve jobs" request. NOT…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1687
|
2010-05-5 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267150
|
- |
|
joomlacomponent.inetlanka
|
com_drawroot
|
Directory traversal vulnerability in the iNetLanka Contact Us Draw Root Map (com_drawroot) component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified othe…
|
CWE-22
Path Traversal
|
CVE-2010-1723
|
2010-05-5 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
