|
257911
|
- |
|
wikyblog
|
wikyblog
|
Per: http://cwe.mitre.org/data/definitions/434.html
CWE-434: Unrestricted Upload of File with Dangerous Type
|
NVD-CWE-Other
|
CVE-2010-0757
|
2017-08-17 10:32 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257912
|
- |
|
softbizscripts
|
softbiz_jobs_and_recruitment_script
|
SQL injection vulnerability in news_desc.php in Softbiz Jobs allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-0758
|
2017-08-17 10:32 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257913
|
- |
|
greatjoomla
|
scriptegrator_plugin
|
Directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and …
|
CWE-22
Path Traversal
|
CVE-2010-0759
|
2017-08-17 10:32 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257914
|
- |
|
kuwaitphp
|
esmile
|
SQL injection vulnerability in index.php in KuwaitPHP eSmile allows remote attackers to execute arbitrary SQL commands via the cid parameter in a show action.
|
CWE-89
SQL Injection
|
CVE-2010-0764
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257915
|
- |
|
fipsasp
|
fipsforum
|
fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for _database/forumFips.mdb.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0765
|
2017-08-17 10:32 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257916
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote attacke…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0768
|
2017-08-17 10:32 |
2010-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257917
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local use…
|
CWE-255
Credentials Management
|
CVE-2010-0769
|
2017-08-17 10:32 |
2010-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257918
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote authenticated users to cause a denial of service (ORB ListenerThread hang) by abo…
|
CWE-399
Resource Management Errors
|
CVE-2010-0770
|
2017-08-17 10:32 |
2010-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257919
|
- |
|
ibm
|
websphere_mq
|
Unspecified vulnerability in the channel process in IBM WebSphere MQ 7.0 before 7.0.1.2 allows remote authenticated users to cause a denial of service (daemon crash) via "incorrect channel control da…
|
NVD-CWE-noinfo
|
CVE-2010-0772
|
2017-08-17 10:32 |
2010-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257920
|
- |
|
ibm
|
websphere_application_server
|
The (1) JAX-RPC WS-Security 1.0 and (2) JAX-WS runtime implementations in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 do not properly hand…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0774
|
2017-08-17 10:32 |
2010-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
