|
310181
|
- |
|
otrs
|
otrs
|
installer.pl in Open Ticket Request System (OTRS) before 3.0.3 has an Inbound Mail Password field that uses the text type, instead of the password type, for its INPUT element, which makes it easier f…
|
CWE-310
Cryptographic Issues
|
CVE-2010-4758
|
2024-11-21 10:21 |
2011-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310182
|
- |
|
e107
|
e107
|
Cross-site scripting (XSS) vulnerability in submitnews.php in e107 before 0.7.23 allows remote attackers to inject arbitrary web script or HTML via the submitnews_title parameter, a different vector …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4757
|
2024-11-21 10:21 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310183
|
- |
|
gnu
|
gnu_patch
|
Directory traversal vulnerability in util.c in GNU patch 2.6.1 and earlier allows user-assisted remote attackers to create or overwrite arbitrary files via a filename that is specified with a .. (dot…
|
CWE-22
Path Traversal
|
CVE-2010-4651
|
2024-11-21 10:21 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310184
|
- |
|
gnu
|
glibc
|
The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not …
|
CWE-399
Resource Management Errors
|
CVE-2010-4756
|
2024-11-21 10:21 |
2011-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310185
|
- |
|
openbsd
freebsd
netbsd
|
openssh
freebsd
netbsd
openbsd
|
The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow…
|
CWE-399
Resource Management Errors
|
CVE-2010-4755
|
2024-11-21 10:21 |
2011-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310186
|
- |
|
openbsd
apple
netbsd
freebsd
|
openbsd
mac_os_x
netbsd
freebsd
|
The glob implementation in libc in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, and OpenBSD 4.7, and Libsystem in Apple Mac OS X before 10.6.8, allows remote authenticated users to cause a denial of service (C…
|
CWE-399
Resource Management Errors
|
CVE-2010-4754
|
2024-11-21 10:21 |
2011-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310187
|
- |
|
lightneasy
|
lightneasy
|
Cross-site scripting (XSS) vulnerability in LightNEasy.php in LightNEasy 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter, which is not properly handled in a …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4753
|
2024-11-21 10:21 |
2011-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310188
|
- |
|
lightneasy
|
lightneasy
|
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the page parameter, a different vec…
|
CWE-89
SQL Injection
|
CVE-2010-4752
|
2024-11-21 10:21 |
2011-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310189
|
- |
|
lightneasy
|
lightneasy
|
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the id parameter in an ed…
|
CWE-89
SQL Injection
|
CVE-2010-4751
|
2024-11-21 10:21 |
2011-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310190
|
- |
|
blogcms
|
blog\
|
Cross-site request forgery (CSRF) vulnerability in admin/libs/ADMIN.php in BLOG:CMS 4.2.1.e, and possibly earlier, allows remote attackers to hijack the authentication of administrators.
|
CWE-352
Origin Validation Error
|
CVE-2010-4750
|
2024-11-21 10:21 |
2011-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
