|
267561
|
- |
|
kolab
|
kolab_server
|
Unspecified vulnerability in Kolab Webclient before 1.2.0 in Kolab Server before 2.2.3 allows attackers to have an unspecified impact via vectors related to an "image upload form."
|
NVD-CWE-noinfo
|
CVE-2009-4824
|
2010-06-5 14:31 |
2010-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267562
|
- |
|
zeeways
|
ebay_clone_auction_script
|
Cross-site scripting (XSS) vulnerability in signinform.php in Zeeways eBay Clone Auction Script allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: some of th…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2144
|
2010-06-4 13:00 |
2010-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267563
|
- |
|
graviton-mediatech
|
visitor_logger
|
PHP remote file inclusion vulnerability in banned.php in Visitor Logger allows remote attackers to execute arbitrary PHP code via a URL in the VL_include_path parameter.
|
CWE-94
Code Injection
|
CVE-2010-2146
|
2010-06-4 13:00 |
2010-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267564
|
- |
|
fujitsu
|
e-pares
|
Cross-site scripting (XSS) vulnerability Fujitsu e-Pares V01 L01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2150
|
2010-06-4 13:00 |
2010-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267565
|
- |
|
fujitsu
|
e-pares
|
Cross-site request forgery (CSRF) vulnerability in Fujitsu e-Pares V01 L01 V01 L01, L03, L10, L20, L30, and L40 allows remote attackers to hijack the authentication of users for requests that modify …
|
CWE-352
Origin Validation Error
|
CVE-2010-2151
|
2010-06-4 13:00 |
2010-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267566
|
- |
|
tecnick
|
tcexam
|
Unrestricted file upload vulnerability in admin/code/tce_functions_tcecode_editor.php in TCExam 10.1.006 and 10.1.007 allows remote attackers to execute arbitrary code by uploading a file with an exe…
|
NVD-CWE-Other
|
CVE-2010-2153
|
2010-06-4 13:00 |
2010-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267567
|
- |
|
tecnick
|
tcexam
|
Per: http://cwe.mitre.org/data/definitions/434.html
'CWE-434: Unrestricted Upload of File with Dangerous Type'
|
NVD-CWE-Other
|
CVE-2010-2153
|
2010-06-4 13:00 |
2010-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267568
|
- |
|
dovecot
|
dovecot
|
Unspecified vulnerability in Dovecot 1.2.x before 1.2.11 allows remote attackers to cause a denial of service (CPU consumption) via long headers in an e-mail message.
|
CWE-399
Resource Management Errors
|
CVE-2010-0745
|
2010-06-3 14:54 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267569
|
- |
|
barnowl
|
barnowl
|
Buffer overflow in BarnOwl before 1.5.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted CC: header.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0793
|
2010-06-3 14:54 |
2010-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267570
|
- |
|
typo3
|
typo3
|
PHP remote file inclusion vulnerability in the autoloader in TYPO3 4.3.x before 4.3.3 allows remote attackers to execute arbitrary PHP code via a URL in an input field associated with the className v…
|
CWE-94
Code Injection
|
CVE-2010-1153
|
2010-06-3 13:00 |
2010-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
