|
346451
|
- |
|
dynamicsoft
|
wsc_cms
|
SQL injection vulnerability in backoffice/login.asp in Dynamicsoft WSC CMS 2.2 allows remote attackers to execute arbitrary SQL commands via the Password parameter. NOTE: some of these details are o…
|
CWE-89
SQL Injection
|
CVE-2010-0698
|
2017-08-17 10:32 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346452
|
- |
|
wampserver
|
wampserver
|
Cross-site scripting (XSS) vulnerability in index.php in WampServer 2.0i allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0700
|
2017-08-17 10:32 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346453
|
- |
|
newgensoft
|
omnidocs
|
SQL injection vulnerability in ForceChangePassword.jsp in Newgen Software OmniDocs allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-0701
|
2017-08-17 10:32 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346454
|
- |
|
subexworld
|
nikira_fraud_management_system
|
Cross-site scripting (XSS) vulnerability in the login/prompt component in Subex Nikira Fraud Management System allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0706
|
2017-08-17 10:32 |
2010-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346455
|
- |
|
timeclock-software
|
employee_timeclock_software
|
Cross-site request forgery (CSRF) vulnerability in add_user.php in Employee Timeclock Software 0.99 allows remote attackers to hijack the authentication of an administrator for requests that create n…
|
CWE-352
Origin Validation Error
|
CVE-2010-0707
|
2017-08-17 10:32 |
2010-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346456
|
- |
|
sun
|
java_system_directory_server
|
Multiple unspecified vulnerabilities in (1) ns-slapd and (2) slapd.exe in Sun Directory Server Enterprise Edition 7.0, Sun Java System Directory Server 5.2, and Sun Java System Directory Server Enter…
|
NVD-CWE-noinfo
|
CVE-2010-0708
|
2017-08-17 10:32 |
2010-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346457
|
- |
|
limny
|
limny
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Limny 2.0 allow remote attackers to (1) hijack the authentication of users or administrators for requests that change the email address o…
|
CWE-352
Origin Validation Error
|
CVE-2010-0709
|
2017-08-17 10:32 |
2010-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346458
|
- |
|
zenoss
|
zenoss
|
Multiple SQL injection vulnerabilities in zport/dmd/Events/getJSONEventsInfo in Zenoss 2.3.3, and other versions before 2.5, allow remote authenticated users to execute arbitrary SQL commands via the…
|
CWE-89
SQL Injection
|
CVE-2010-0712
|
2017-08-17 10:32 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346459
|
- |
|
moinmo
|
moinmoin
|
The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors.
|
CWE-16
Configuration
|
CVE-2010-0717
|
2017-08-17 10:32 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346460
|
- |
|
microsoft
|
windows_media_player
|
Buffer overflow in Microsoft Windows Media Player 9 and 11.0.5721.5145 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted .mpg file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0718
|
2017-08-17 10:32 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
