266791
|
- |
|
freebsd
|
freebsd
|
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2693
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266792
|
- |
|
lsoft
|
listserv
|
Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2723
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266793
|
- |
|
litespeedtech
|
litespeed_web_server
|
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
|
CWE-200
Information Exposure
|
CVE-2010-2333
|
2010-07-13 14:52 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266794
|
- |
|
qsoft-inc
|
k-search
|
Cross-site scripting (XSS) vulnerability in index.php in K-Search allows remote attackers to inject arbitrary web script or HTML via the term parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2457
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266795
|
- |
|
s2sys linearcorp sonitrol
|
netbox emerge_50 emerge_5000 eaccess
|
The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which al…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2465
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266796
|
- |
|
s2sys linearcorp sonitrol
|
netbox emerge_50 emerge_5000 eaccess
|
Per: http://www.kb.cert.org/vuls/id/MAPG-83TQL8
'Vendor Statement
S2 Security has made available patches or upgrades available to address this vulnerability in all versions of our product (2.5, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2465
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266797
|
- |
|
cisco
|
ios
|
Unspecified vulnerability in Cisco IOS 12.4, when NAT SCCP fragmentation support is enabled, allows remote attackers to cause a denial of service (device reload) via crafted Skinny Client Control Pro…
|
NVD-CWE-noinfo
|
CVE-2010-0584
|
2010-07-13 14:50 |
2010-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266798
|
- |
|
frank-karau
|
phpfk_php_forum
|
Cross-site scripting (XSS) vulnerability in search.php in phpFK PHP Forum ohne 7.0.4 allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of …
|
CWE-79
Cross-site Scripting
|
CVE-2009-4677
|
2010-07-13 14:48 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266799
|
- |
|
internetdm
|
webdm_cms
|
SQL injection vulnerability in cont_form.php in Internet DM WebDM CMS allows remote attackers to execute arbitrary SQL commands via the cf_id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2689
|
2010-07-13 13:00 |
2010-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266800
|
- |
|
redcomponent
|
com_redshop
|
SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-2694
|
2010-07-13 13:00 |
2010-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|