|
265091
|
- |
|
alanzard
|
tsoka\
|
Cross-site scripting (XSS) vulnerability in index.php in TSOKA:CMS 1.1, 1.9, and 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in an articolo action.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2675
|
2010-07-16 13:00 |
2010-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265092
|
- |
|
pedro_lineu_orso
|
chetcpasswd
|
Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long REMOTE_ADDR environ…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2006-6685
|
2010-07-16 13:00 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265093
|
- |
|
rightinpoint
|
lyrics_engine
|
Cross-site scripting (XSS) vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artist_id parameter, which is not proper…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2722
|
2010-07-15 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265094
|
- |
|
freebsd
|
freebsd
|
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2693
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265095
|
- |
|
lsoft
|
listserv
|
Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2723
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265096
|
- |
|
litespeedtech
|
litespeed_web_server
|
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
|
CWE-200
Information Exposure
|
CVE-2010-2333
|
2010-07-13 14:52 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265097
|
- |
|
qsoft-inc
|
k-search
|
Cross-site scripting (XSS) vulnerability in index.php in K-Search allows remote attackers to inject arbitrary web script or HTML via the term parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2457
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265098
|
- |
|
s2sys
linearcorp
sonitrol
|
netbox
emerge_50
emerge_5000
eaccess
|
The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which al…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2465
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265099
|
- |
|
s2sys
linearcorp
sonitrol
|
netbox
emerge_50
emerge_5000
eaccess
|
Per: http://www.kb.cert.org/vuls/id/MAPG-83TQL8
'Vendor Statement
S2 Security has made available patches or upgrades available to address this vulnerability in all versions of our product (2.5, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2465
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265100
|
- |
|
cisco
|
ios
|
Unspecified vulnerability in Cisco IOS 12.4, when NAT SCCP fragmentation support is enabled, allows remote attackers to cause a denial of service (device reload) via crafted Skinny Client Control Pro…
|
NVD-CWE-noinfo
|
CVE-2010-0584
|
2010-07-13 14:50 |
2010-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
