267471
|
- |
|
yamamah
|
yamamah
|
Directory traversal vulnerability in themes/default/download.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to read arbitrary files via a .. (dot dot) in t…
|
CWE-22
Path Traversal
|
CVE-2010-2334
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267472
|
- |
|
arabportal
|
arab_portal
|
SQL injection vulnerability in members.php in Arab Portal 2.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the by parameter in the msearch action.
|
CWE-89
SQL Injection
|
CVE-2010-2340
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267473
|
- |
|
unrealircd
|
unrealircd
|
UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 through June 2010, contains an externally introduced modification (Trojan Horse) in the DEBUG3_DOLOG_SYSTEM macro, which …
|
CWE-20
Improper Input Validation
|
CVE-2010-2075
|
2010-06-18 14:36 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267474
|
- |
|
unrealircd
|
unrealircd
|
Per: http://www.unrealircd.com/txt/unrealsecadvisory.20100612.txt
'Official precompiled Windows binaries (SSL and non-ssl) are NOT affected.
CVS is also not affected.
3.2.8 and any earlier v…
|
CWE-20
Improper Input Validation
|
CVE-2010-2075
|
2010-06-18 14:36 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267475
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0537
|
2010-06-18 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267476
|
- |
|
notsopureedit
|
notsopureedit
|
PHP remote file inclusion vulnerability in templates/template.php in notsoPureEdit 1.4.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL…
|
CWE-94
Code Injection
|
CVE-2010-1216
|
2010-06-18 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267477
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
NetAuthSysAgent in Network Authorization in Apple Mac OS X 10.5.8 does not have the expected authorization requirements, which allows local users to gain privileges via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2010-1375
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267478
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Multiple format string vulnerabilities in Network Authorization in Apple Mac OS X 10.6 before 10.6.4 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) …
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-1376
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267479
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an unencrypted connection upon certain SSL failures, which allows man-in-the-middle attackers to spoof arbitrary network account servers, a…
|
CWE-310
Cryptographic Issues
|
CVE-2010-1377
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267480
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Printer Setup in Apple Mac OS X 10.6 before 10.6.4 does not properly interpret character encoding, which allows remote attackers to cause a denial of service (printing failure) by deploying a printin…
|
CWE-20
Improper Input Validation
|
CVE-2010-1379
|
2010-06-18 13:00 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|