|
257401
|
- |
|
greatjoomla
|
scriptegrator_plugin
|
Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and …
|
CWE-22
Path Traversal
|
CVE-2010-0759
|
2017-08-17 10:32 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257402
|
- |
|
kuwaitphp
|
esmile
|
SQL injection vulnerability in index.php in KuwaitPHP eSmile allows remote attackers to execute arbitrary SQL commands via the cid parameter in a show action.
|
CWE-89
SQL Injection
|
CVE-2010-0764
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257403
|
- |
|
fipsasp
|
fipsforum
|
fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for _database/forumFips.mdb.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0765
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257404
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote attacke…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0768
|
2017-08-17 10:32 |
2010-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257405
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local use…
|
CWE-255
Credentials Management
|
CVE-2010-0769
|
2017-08-17 10:32 |
2010-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257406
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote authenticated users to cause a denial of service (ORB ListenerThread hang) by abo…
|
CWE-399
Resource Management Errors
|
CVE-2010-0770
|
2017-08-17 10:32 |
2010-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257407
|
- |
|
ibm
|
websphere_mq
|
Unspecified vulnerability in the channel process in IBM WebSphere MQ 7.0 before 7.0.1.2 allows remote authenticated users to cause a denial of service (daemon crash) via "incorrect channel control da…
|
NVD-CWE-noinfo
|
CVE-2010-0772
|
2017-08-17 10:32 |
2010-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257408
|
- |
|
ibm
|
websphere_application_server
|
The (1) JAX-RPC WS-Security 1.0 and (2) JAX-WS runtime implementations in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 do not properly hand…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0774
|
2017-08-17 10:32 |
2010-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257409
|
- |
|
ibm
|
websphere_application_server
|
Unspecified vulnerability in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 allows remote attackers to cause a denial of service (memory cons…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2010-0775
|
2017-08-17 10:32 |
2010-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257410
|
- |
|
ibm
|
websphere_application_server
|
The Web Container in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 does not properly handle chunked transfer encoding during a call to respo…
|
CWE-20
Improper Input Validation
|
CVE-2010-0776
|
2017-08-17 10:32 |
2010-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
