|
267341
|
- |
|
ibm
|
advanced_management_module
|
The IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2656
|
2010-07-20 14:48 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267342
|
- |
|
mortbay
|
jetty
|
Cross-site scripting (XSS) vulnerability in Mort Bay Jetty before 6.1.17 allows remote attackers to inject arbitrary web script or HTML via a directory listing request containing a ; (semicolon) char…
|
CWE-79
Cross-site Scripting
|
CVE-2009-1524
|
2010-07-20 14:36 |
2009-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267343
|
- |
|
sun
|
openoffice.org
|
Heap-based buffer overflow in svtools/source/filter.vcl/wmf/enhwmf.cxx in Go-oo 2.x and 3.x before 3.0.1, previously named ooo-build and related to OpenOffice.org (OOo), allows remote attackers to ex…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2139
|
2010-07-19 13:00 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267344
|
- |
|
alanzard
|
tsoka\
|
Cross-site scripting (XSS) vulnerability in index.php in TSOKA:CMS 1.1, 1.9, and 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in an articolo action.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2675
|
2010-07-16 13:00 |
2010-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267345
|
- |
|
pedro_lineu_orso
|
chetcpasswd
|
Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long REMOTE_ADDR environ…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2006-6685
|
2010-07-16 13:00 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267346
|
- |
|
rightinpoint
|
lyrics_engine
|
Cross-site scripting (XSS) vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artist_id parameter, which is not proper…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2722
|
2010-07-15 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267347
|
- |
|
freebsd
|
freebsd
|
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2693
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267348
|
- |
|
lsoft
|
listserv
|
Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2723
|
2010-07-14 13:00 |
2010-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267349
|
- |
|
litespeedtech
|
litespeed_web_server
|
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
|
CWE-200
Information Exposure
|
CVE-2010-2333
|
2010-07-13 14:52 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267350
|
- |
|
qsoft-inc
|
k-search
|
Cross-site scripting (XSS) vulnerability in index.php in K-Search allows remote attackers to inject arbitrary web script or HTML via the term parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2457
|
2010-07-13 14:52 |
2010-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
