|
355081
|
- |
|
gnustep
|
gnustep_base
|
Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 allows local users to read arbitrary files via a (1) -c or (2) -a option, which prints file contents in an error message.
|
CWE-200
Information Exposure
|
CVE-2010-1457
|
2010-05-12 20:46 |
2010-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355082
|
- |
|
tufat
|
flashcard
|
Cross-site scripting (XSS) vulnerability in cPlayer.php in FlashCard 2.6.5 and 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details …
|
CWE-79
Cross-site Scripting
|
CVE-2010-1872
|
2010-05-12 20:46 |
2010-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355083
|
- |
|
abcbackup
internet-soft
|
abc_backup
urgent_backup
|
Stack-based buffer overflow in (1) Urgent Backup 3.20, and (2) ABC Backup Pro 5.20 and ABC Backup 5.50, allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP archive.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1686
|
2010-05-12 09:41 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355084
|
- |
|
turnkeyforms
|
yahoo-answers-clone
|
Cross-site scripting (XSS) vulnerability in questiondetail.php in Yahoo Answers Clone allows remote attackers to inject arbitrary web script or HTML via the questionid parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4858
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355085
|
- |
|
onlinetechtools.com
|
owos_lite
|
Multiple cross-site scripting (XSS) vulnerabilities in Online Work Order Suite (OWOS) Lite Edition 3.10 allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) def…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4859
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355086
|
- |
|
supportpro
|
supportdesk
|
Cross-site scripting (XSS) vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4861
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355087
|
- |
|
hitronsoft
|
answer_me
|
Cross-site scripting (XSS) vulnerability in Hitron Soft Answer Me 1.0 allows remote attackers to inject arbitrary web script or HTML via the q_id parameter to the answers script (aka answers.php). N…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4868
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355088
|
- |
|
hitronsoft
|
nasim_guest_book
|
Cross-site scripting (XSS) vulnerability in index.php in Nasim Guest Book 1.2 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4869
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355089
|
- |
|
openttd
|
openttd
|
OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0401
|
2010-05-11 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
355090
|
- |
|
openttd
|
openttd
|
OpenTTD before 1.0.1 allows remote attackers to cause a denial of service (file-descriptor exhaustion and daemon crash) by performing incomplete downloads of the map.
|
CWE-399
Resource Management Errors
|
CVE-2010-0406
|
2010-05-11 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
