267061
|
- |
|
scriptsez
|
mini_hosting_panel
|
Cross-site request forgery (CSRF) vulnerability in hosting/admin_ac.php in ScriptsEz Mini Hosting Panel allows remote attackers to hijack the authentication of administrators for requests that alter …
|
CWE-352
Origin Validation Error
|
CVE-2009-4826
|
2010-05-24 13:00 |
2010-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267062
|
- |
|
scriptez
|
mail_manager_pro
|
Cross-site request forgery (CSRF) vulnerability in admin.php in Mail Manager Pro allows remote attackers to hijack the authentication of administrators for requests that change the admin password via…
|
CWE-352
Origin Validation Error
|
CVE-2009-4827
|
2010-05-24 13:00 |
2010-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267063
|
- |
|
phpwebscripts
|
ad_manager_pro
|
Cross-site request forgery (CSRF) vulnerability in administration/admins.php in Ad Manager Pro (aka AdManagerPro) 3.0 allows remote attackers to hijack the authentication of administrators for reques…
|
CWE-352
Origin Validation Error
|
CVE-2009-4828
|
2010-05-24 13:00 |
2010-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267064
|
- |
|
stafford.uklinux
|
libesmtp
|
libESMTP, probably 1.0.4 and earlier, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attack…
|
CWE-310
Cryptographic Issues
|
CVE-2010-1192
|
2010-05-22 14:46 |
2010-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267065
|
- |
|
stafford.uklinux
|
libesmtp
|
The match_component function in smtp-tls.c in libESMTP 1.0.3.r1, and possibly other versions including 1.0.4, treats two strings as equal if one is a substring of the other, which allows remote attac…
|
CWE-310
Cryptographic Issues
|
CVE-2010-1194
|
2010-05-22 14:46 |
2010-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267066
|
- |
|
hp
|
insight_control_server_migration_for_windows
|
Multiple cross-site scripting (XSS) vulnerabilities in HP Insight Control Server Migration before 6.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-1557
|
2010-05-21 14:59 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267067
|
- |
|
cisco
|
pgw_2200_softswitch
|
The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S11 and 9.7(3)P before 9.7(3)P11 allows remote attackers to cause a denial of service (device crash) via a l…
|
CWE-20
Improper Input Validation
|
CVE-2010-1561
|
2010-05-21 14:59 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267068
|
- |
|
cisco
|
pgw_2200_softswitch
|
The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and 9.7(3)P before 9.7(3)P9 allows remote attackers to cause a denial of service (device crash) via a mal…
|
CWE-20
Improper Input Validation
|
CVE-2010-1562
|
2010-05-21 14:59 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267069
|
- |
|
cisco
|
pgw_2200_softswitch
|
The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and 9.7(3)P before 9.7(3)P9 allows remote attackers to cause a denial of service (device crash) via a mal…
|
CWE-20
Improper Input Validation
|
CVE-2010-1563
|
2010-05-21 14:59 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267070
|
- |
|
cisco
|
pgw_2200_softswitch
|
Unspecified vulnerability in the SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and 9.7(3)P before 9.7(3)P9 allows remote attackers to cause a denial of ser…
|
CWE-399
Resource Management Errors
|
CVE-2010-1565
|
2010-05-21 14:59 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|