266101
|
- |
|
dustincowell
|
free_simple_cms
|
Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) meta or (2) phpincdir p…
|
CWE-94
Code Injection
|
CVE-2010-3742
|
2010-10-6 23:13 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266102
|
- |
|
ibm
|
db2_universal_database
|
The audit facility in the Security component in IBM DB2 UDB 9.5 before FP6a uses instance-level audit settings to capture connection (aka CONNECT and AUTHENTICATION) events in certain circumstances i…
|
CWE-287
Improper Authentication
|
CVE-2010-3739
|
2010-10-6 13:00 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266103
|
- |
|
joomla
|
joomla\!
|
Multiple cross-site scripting (XSS) vulnerabilities in the Back End in Joomla! 1.5.x before 1.5.20 allow remote authenticated users to inject arbitrary web script or HTML via administrator screens.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2535
|
2010-10-6 03:00 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266104
|
- |
|
dustincowell
|
free_simple_cms
|
Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) body, (2) f…
|
CWE-94
Code Injection
|
CVE-2010-3307
|
2010-10-6 03:00 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266105
|
- |
|
nokia
|
qt_creator
|
Qt Creator before 2.0.1 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
|
NVD-CWE-Other
|
CVE-2010-3374
|
2010-10-5 13:00 |
2010-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266106
|
- |
|
nokia
|
qt_creator
|
Per: http://qt.nokia.com/about/news/security-announcement-qt-creator-2.0.0-for-desktop-platforms
'The issue does not affect Windows or Mac OS X.'
|
NVD-CWE-Other
|
CVE-2010-3374
|
2010-10-5 13:00 |
2010-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266107
|
- |
|
netartmedia
|
websiteadmin
|
Directory traversal vulnerability in ADMIN/login.php in NetArtMEDIA WebSiteAdmin allows remote emote attackers to include and execute arbitrary local files via directory traversal sequences in the ln…
|
CWE-22
Path Traversal
|
CVE-2010-3688
|
2010-10-1 02:34 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266108
|
- |
|
netbsd apple freebsd
|
netbsd mac_os_x freebsd
|
Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via…
|
CWE-189
Numeric Errors
|
CVE-2010-2530
|
2010-09-30 13:00 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266109
|
- |
|
drupal peter_wolanin
|
drupal openid
|
The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.0 protocol by not verifying the openid.return_to value, which allows remote att…
|
CWE-287
Improper Authentication
|
CVE-2010-3091
|
2010-09-30 13:00 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266110
|
- |
|
llnl
|
slurm
|
The (1) init.d/slurm and (2) init.d/slurmdbd scripts in SLURM before 2.1.14 place the . (dot) directory in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared l…
|
NVD-CWE-Other
|
CVE-2010-3380
|
2010-09-30 13:00 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|