|
347281
|
- |
|
lighttpd
|
lighttpd
|
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a …
|
CWE-399
Resource Management Errors
|
CVE-2010-0295
|
2017-08-17 10:31 |
2010-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347282
|
- |
|
maildrop
|
maildrop
|
main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain priv…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0301
|
2017-08-17 10:31 |
2010-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347283
|
- |
|
dinko_korunic
|
hybserv2
|
mystring.c in hybserv in IRCD-Hybrid (aka Hybrid2 IRC Services) 1.9.2 through 1.9.4 allows remote attackers to cause a denial of service (daemon crash) via a ":help \t" private message to the MemoSer…
|
CWE-20
Improper Input Validation
|
CVE-2010-0303
|
2017-08-17 10:31 |
2010-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347284
|
- |
|
process-one
|
ejabberd
|
ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.
|
CWE-20
Improper Input Validation
|
CVE-2010-0305
|
2017-08-17 10:31 |
2010-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347285
|
- |
|
bitscripts
|
bits_video_script
|
Cross-site scripting (XSS) vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote attackers to inject arbitrary web script or HTML via the order parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0365
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347286
|
- |
|
bitscripts
|
bits_video_script
|
Multiple unrestricted file upload vulnerabilities in (1) register.php and (2) addvideo.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allow remote attackers to execute arbitrary code by …
|
CWE-20
Improper Input Validation
|
CVE-2010-0366
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347287
|
- |
|
bitscripts
|
bits_video_script
|
Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, and possibly 2.04, allow remote attackers to execute arbitrary PHP code via a URL in the rowptem[tem…
|
CWE-94
Code Injection
|
CVE-2010-0367
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347288
|
- |
|
hitmaaan
|
hitmaaan_gallery
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Hitmaaan Gallery 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) gall and (2) levela parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0371
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347289
|
- |
|
hong_chuyen
|
com_articlemanager
|
SQL injection vulnerability in the Articlemanager (com_articlemanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the artid parameter in a display action to i…
|
CWE-89
SQL Injection
|
CVE-2010-0372
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347290
|
- |
|
joomla
|
com_libros
|
SQL injection vulnerability in the libros (com_libros) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-0373
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
