|
267511
|
- |
|
dojotoolkit
|
dojo
|
Multiple cross-site scripting (XSS) vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to inject arb…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2273
|
2010-06-16 13:00 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267512
|
- |
|
ibm
|
lotus_connections
|
The bookmarklet pop-up in the Bookmarks component in IBM Lotus Connections 2.5.x before 2.5.0.2 does not properly follow the "force SSL" setting, which might make it easier for remote attackers to ob…
|
NVD-CWE-Other
|
CVE-2010-2278
|
2010-06-16 13:00 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267513
|
- |
|
ibm
|
lotus_connections
|
The Top Updates implementation in the Homepage component in IBM Lotus Connections 2.5.x before 2.5.0.2, when "forced SSL" is enabled, uses http for links, which has unspecified impact and remote atta…
|
NVD-CWE-Other
|
CVE-2010-2279
|
2010-06-16 13:00 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267514
|
- |
|
tomatocms
|
tomatocms
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in TomatoCMS 2.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) keyword or (2) bannerid parameter in conj…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2281
|
2010-06-16 13:00 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267515
|
- |
|
punbb
|
punbb
|
Multiple cross-site scripting (XSS) vulnerabilities in profile.php in PunBB before 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) password or (2) e-mail.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4894
|
2010-06-15 23:04 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267516
|
- |
|
realitymedias
|
repairshop2
|
SQL injection vulnerability in index.php in RepairShop2 1.9.023 Trial, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the prod parameter in a product…
|
CWE-89
SQL Injection
|
CVE-2010-1857
|
2010-06-14 04:18 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267517
|
- |
|
xinha
s9y
|
wysiwyg_editor
serendipity
|
The dynamic configuration feature in Xinha WYSIWYG editor 0.96 Beta 2 and earlier, as used in Serendipity 1.5.2 and earlier, allows remote attackers to bypass intended access restrictions and modify …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1916
|
2010-06-14 04:18 |
2010-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267518
|
- |
|
zonecheck
|
zonecheck
|
Multiple cross-site scripting (XSS) vulnerabilities in zc/publisher/html.rb in ZoneCheck 2.1.0 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) xmlnode.value, …
|
CWE-79
Cross-site Scripting
|
CVE-2010-2155
|
2010-06-14 04:18 |
2010-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267519
|
- |
|
cisco
|
mediator_framework
|
Unspecified vulnerability in Cisco Mediator Framework 2.2 before 2.2.1.dev.1 and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Mediator…
|
NVD-CWE-noinfo
|
CVE-2010-0596
|
2010-06-14 04:16 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267520
|
- |
|
cisco
|
mediator_framework
|
Unspecified vulnerability in Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4…
|
NVD-CWE-noinfo
|
CVE-2010-0597
|
2010-06-14 04:16 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
