|
257411
|
- |
|
ibm
|
websphere_application_server
|
The Web Container in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 does not properly handle long filenames and consequently sends an incorre…
|
CWE-20
Improper Input Validation
|
CVE-2010-0777
|
2017-08-17 10:32 |
2010-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257412
|
- |
|
fuse
|
fuse
|
fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint.
|
CWE-59
Link Following
|
CVE-2010-0789
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257413
|
- |
|
harmistechnology
|
com_jeeventcalendar
|
SQL injection vulnerability in the JE Event Calendars (com_jeeventcalendar) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an event …
|
CWE-89
SQL Injection
|
CVE-2010-0795
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257414
|
- |
|
harmistechnology
|
com_jeeventcalendar
|
SQL injection vulnerability in the JE Quiz (com_jequizmanagement) component 1.b01 for Joomla! allows remote attackers to execute arbitrary SQL commands via the eid parameter in a question action to i…
|
CWE-89
SQL Injection
|
CVE-2010-0796
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257415
|
- |
|
joomservices
|
com_dms
|
SQL injection vulnerability in the Ossolution Team Documents Seller (aka DMS) (com_dms) component 2.5.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id param…
|
CWE-89
SQL Injection
|
CVE-2010-0800
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257416
|
- |
|
jvideodirect
|
com_jvideodirect
|
SQL injection vulnerability in the jVideoDirect (com_jvideodirect) component 1.1 RC3b for Joomla! allows remote attackers to execute arbitrary SQL commands via the v parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-0803
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257417
|
- |
|
gnu
|
emacs
|
lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0825
|
2017-08-17 10:32 |
2010-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257418
|
- |
|
moinmo
|
moinmoin
|
Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam action module in MoinMoin 1.8.7 and 1.9.2 allows remote authenticated users to inject arbitrary web script or HTML by creati…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0828
|
2017-08-17 10:32 |
2010-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257419
|
- |
|
oracle
|
industry_product_suite
|
Unspecified vulnerability in the Retail - Oracle Retail Markdown Optimization component in Oracle Industry Product Suite 13.1 allows remote attackers to affect integrity via unknown vectors related t…
|
NVD-CWE-noinfo
|
CVE-2010-0862
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257420
|
- |
|
oracle
|
industry_product_suite
|
Per: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2010.html
'1. For Oracle Retail Markdown Optimization, Plan, and Place In-Season, this vulnerability affects the …
|
NVD-CWE-noinfo
|
CVE-2010-0862
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
