|
310371
|
- |
|
earl_miles
|
views
|
Cross-site scripting (XSS) vulnerability in the Views module 6.x before 6.x-2.12 for Drupal allows remote attackers to inject arbitrary web script or HTML via a page path.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4521
|
2024-11-21 10:21 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310372
|
- |
|
earl_miles
|
views
|
Multiple cross-site scripting (XSS) vulnerabilities in the Views module 6.x before 6.x-2.11 for Drupal allow remote attackers to inject arbitrary web script or HTML via (1) a URL or (2) an aggregator…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4520
|
2024-11-21 10:21 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310373
|
- |
|
earl_miles
|
views
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Views UI implementation in the Views module 5.x before 5.x-1.8 and 6.x before 6.x-2.11 for Drupal allow remote attackers to hijack th…
|
CWE-352
Origin Validation Error
|
CVE-2010-4519
|
2024-11-21 10:21 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310374
|
- |
|
ibm
|
lotus_mobile_connect
|
The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 disables the http.device.stanza blacklisting functionality for HTTP Access Services (HTTP-AS), which allows remote attackers to bypass …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4595
|
2024-11-21 10:21 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310375
|
- |
|
ibm
|
lotus_mobile_connect
|
The Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not properly process TCP connection requests, which allows remote attackers to ca…
|
CWE-399
Resource Management Errors
|
CVE-2010-4594
|
2024-11-21 10:21 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310376
|
- |
|
ibm
|
lotus_mobile_connect
|
The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 does not properly maintain a certain reference count, which allows remote authenticated users to cause a denial of service (IP address …
|
CWE-399
Resource Management Errors
|
CVE-2010-4593
|
2024-11-21 10:21 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310377
|
- |
|
ibm
|
lotus_mobile_connect
|
The Mobile Network Connections functionality in the Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not properly handle failed attemp…
|
CWE-399
Resource Management Errors
|
CVE-2010-4592
|
2024-11-21 10:21 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310378
|
- |
|
ibm
|
lotus_mobile_connect
|
The Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not delete LTPA tokens in response to use of the iNotes Logoff button, whic…
|
CWE-287
Improper Authentication
|
CVE-2010-4591
|
2024-11-21 10:21 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310379
|
- |
|
ibm
|
lotus_mobile_connect
|
Cross-site scripting (XSS) vulnerability in HTTP Access Services (HTTP-AS) in the Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4 allows remote attackers to inject arbitrary web scr…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4590
|
2024-11-21 10:21 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310380
|
- |
|
ibm
|
enovia
|
Cross-site scripting (XSS) vulnerability in IBM ENOVIA 6 allows remote attackers to inject arbitrary web script or HTML via vectors related to the emxFramework.FilterParameterPattern property.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4589
|
2024-11-21 10:21 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
