|
263231
|
- |
|
comodo
|
comodo_internet_security
|
The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not properly check whether unspecified X.509 certificates are revoked, which has unknown impact and remote attack vecto…
|
CWE-310
Cryptographic Issues
|
CVE-2011-5121
|
2012-08-27 13:00 |
2012-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263232
|
- |
|
silverstripe
|
silverstripe
|
The Security/changepassword URL action in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 passes a token as a GET parameter while changing a password through email, which allows remote attack…
|
CWE-255
CWE-352
Credentials Management
Origin Validation Error
|
CVE-2010-5080
|
2012-08-27 13:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263233
|
- |
|
silverstripe
|
silverstripe
|
SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows remote attackers to obtain sensitive information.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-5089
|
2012-08-27 13:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263234
|
- |
|
silverstripe
|
silverstripe
|
The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by cha…
|
CWE-94
Code Injection
|
CVE-2010-5091
|
2012-08-27 13:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263235
|
- |
|
silverstripe
|
silverstripe
|
The Add Member dialog in the Security admin page in SilverStripe 2.4.0 saves user passwords in plaintext, which allows local users to obtain sensitive information by reading a database.
|
CWE-255
Credentials Management
|
CVE-2010-5092
|
2012-08-27 13:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263236
|
- |
|
silverstripe
|
silverstripe
|
The deleteinstallfiles function in control/ContentController.php in SilverStripe 2.3.x before 2.3.7 does not require ADMIN permissions, which allows remote attackers to delete index.php and "disrupt …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-5094
|
2012-08-27 13:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263237
|
- |
|
comodo
|
comodo_internet_security
|
Race condition in Comodo Internet Security before 4.1.149672.916 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a …
|
CWE-362
Race Condition
|
CVE-2010-5157
|
2012-08-27 13:00 |
2012-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263238
|
- |
|
comodo
|
comodo_internet_security
|
The Antivirus component in Comodo Internet Security before 4.1.150349.920 allows remote attackers to cause a denial of service (application crash) via a crafted file.
|
NVD-CWE-noinfo
|
CVE-2010-5186
|
2012-08-27 13:00 |
2012-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263239
|
- |
|
silverstripe
|
silverstripe
|
SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1, when running on servers with certain configurations, allows remote attackers to obtain sensitive information via a direct request to PHP files …
|
CWE-200
Information Exposure
|
CVE-2010-5187
|
2012-08-27 13:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263240
|
- |
|
bluecoat
|
sgos
proxysg
proxysg_sg210-10
proxysg_sg210-25
proxysg_sg210-5
proxysg_sg510-10
proxysg_sg510-20
proxysg_sg510-25
proxysg_sg510-5
proxysg_sg810-10
proxysg_sg810-20
pr…
|
The Active Content Transformation functionality in Blue Coat ProxySG before SGOS 4.3.4.2, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.2.1 allows remote attackers to bypa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-5190
|
2012-08-27 13:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
