|
274731
|
- |
|
sixapart
|
movable_type
|
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in Six Apart Movable Type 5.0 and 5.01 allow remote attackers to inject arbitrary web script or HTML via unkno…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1985
|
2010-05-21 04:47 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274732
|
- |
|
mediawiki
|
mediawiki
|
MediaWiki before 1.15.2 does not prevent wiki editors from linking to images from other web sites in wiki pages, which allows editors to obtain IP addresses and other information of wiki users by add…
|
CWE-20
Improper Input Validation
|
CVE-2010-1189
|
2010-05-20 14:49 |
2010-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274733
|
- |
|
cisco
|
pgw_2200_softswitch
|
The SIP implementation on the Cisco PGW 2200 Softswitch with software before 9.7(3)S10 allows remote attackers to cause a denial of service (device crash) via a malformed session attribute, aka Bug I…
|
CWE-20
Improper Input Validation
|
CVE-2010-0603
|
2010-05-20 14:48 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274734
|
- |
|
ffmpeg
|
ffmpeg
|
FFmpeg 0.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4637
|
2010-05-20 14:46 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274735
|
- |
|
phpbb
|
phpbb
|
feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1627
|
2010-05-20 13:00 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274736
|
- |
|
phpbb
|
phpbb
|
Unspecified vulnerability in posting.php in phpBB before 3.0.5 has unknown impact and attack vectors related to the use of a "forum id" in circumstances related to a "global announcement."
|
NVD-CWE-noinfo
|
CVE-2010-1630
|
2010-05-20 13:00 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274737
|
- |
|
joomlart
|
com_javoice
|
Directory traversal vulnerability in the JA Voice (com_javoice) component 2.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php.
|
CWE-22
Path Traversal
|
CVE-2010-1982
|
2010-05-20 13:00 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274738
|
- |
|
nec
|
bladesystemcenter
expresssystemcenter
sigmasystemcenter
virtualpccenter
websam_deploymentmanager
|
Unspecified vulnerability in NEC WebSAM DeploymentManager 5.13 and earlier, as used in SigmaSystemCenter 2.1 Update2 and earlier, BladeSystemCenter, ExpressSystemCenter, and VirtualPCCenter 2.2 and e…
|
NVD-CWE-noinfo
|
CVE-2010-1941
|
2010-05-19 21:08 |
2010-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274739
|
- |
|
nec
|
capsuite_patchmeister
|
Unspecified vulnerability in NEC CapsSuite Small Edition PatchMeister 2.0 Update2 and earlier allows remote attackers to cause a denial of service (OS shutdown or restart) via vectors related to Clie…
|
NVD-CWE-noinfo
|
CVE-2010-1943
|
2010-05-19 21:08 |
2010-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274740
|
- |
|
openmairie
|
openfoncier
|
Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om para…
|
CWE-94
Code Injection
|
CVE-2010-1945
|
2010-05-19 21:07 |
2010-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
