266331
|
- |
|
impresscms
|
impresscms
|
SQL injection vulnerability in ImpressCMS before 1.2.3 RC2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-4271
|
2010-11-18 14:00 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266332
|
- |
|
apple
|
coregraphics mac_os_x mac_os_x_server
|
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF fil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1801
|
2010-11-17 14:00 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266333
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Safari RSS in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 does not block Java applets in an RSS feed, which allows remote attackers to obtain sensitive information via a feed: URL containing an ap…
|
CWE-200
Information Exposure
|
CVE-2010-3796
|
2010-11-17 14:00 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266334
|
- |
|
apple
|
mac_os_x_server
|
Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly manage memory for user names, which allows remote authenticated users to read the private e-mail of other persons in opportunistic circumstan…
|
CWE-200
Information Exposure
|
CVE-2010-4011
|
2010-11-17 14:00 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266335
|
- |
|
apple
|
mac_os_x_server
|
Per: http://lists.apple.com/archives/security-announce/2010//Nov/msg00001.html
'Dovecot is only provided with Mac OS X Server systems. This issue only affects systems running Mac OS X Server v10.6…
|
CWE-200
Information Exposure
|
CVE-2010-4011
|
2010-11-17 14:00 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266336
|
- |
|
infradead
|
openconnect
|
Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service (application crash) via a 404 HTTP status code.
|
NVD-CWE-noinfo
|
CVE-2010-3903
|
2010-11-12 14:00 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266337
|
- |
|
infradead
|
openconnect
|
Per reference link:
"OpenConnect is not officially supported by, or associated in any way with, Cisco Systems"
|
NVD-CWE-noinfo
|
CVE-2010-3903
|
2010-11-12 14:00 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266338
|
- |
|
twiki
|
twiki
|
Cross-site request forgery (CSRF) vulnerability in TWiki before 4.3.2 allows remote attackers to hijack the authentication of arbitrary users for requests that update pages, as demonstrated by a URL …
|
CWE-352
Origin Validation Error
|
CVE-2009-4898
|
2010-11-12 14:00 |
2010-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266339
|
- |
|
hp
|
systems_insight_manager
|
Unspecified vulnerability in HP Systems Insight Manager (SIM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2010-3286
|
2010-11-11 15:50 |
2010-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266340
|
- |
|
hp
|
systems_insight_manager
|
Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2010-3288
|
2010-11-11 15:50 |
2010-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|