|
312521
|
- |
|
accoria
|
rock_web_server
|
Cross-site request forgery (CSRF) vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7 allows remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2010-2268
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312522
|
- |
|
accoria
|
rock_web_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Accoria Web Server (aka Rock Web Server) 1.4.7 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to the get…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2267
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312523
|
- |
|
pxsystem
|
plume-cms
|
Cross-site request forgery (CSRF) vulnerability in Plume CMS 1.2.4 and possibly earlier allows remote attackers to hijack the authentication of administrators for requests that change the administrat…
|
CWE-352
Origin Validation Error
|
CVE-2010-2294
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312524
|
- |
|
d-link
|
di-604
|
The Ping tools web interface in Dlink Di-604 router allows remote authenticated users to cause a denial of service via a large "ip textfield" size.
|
CWE-20
Improper Input Validation
|
CVE-2010-2293
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312525
|
- |
|
d-link
|
di-604
|
Cross-site scripting (XSS) vulnerability in the Ping tools web interface in Dlink Di-604 router allows remote attackers to inject arbitrary web script or HTML via the IP field.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2292
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312526
|
- |
|
snom
|
voip_phone_firmware
|
Unspecified vulnerability in the web interface in snom VoIP Phone firmware 8 before 8.2.35 allows remote attackers to bypass intended restrictions and modify user credentials via unknown vectors. NO…
|
CWE-264
NVD-CWE-noinfo
Permissions, Privileges, and Access Controls
|
CVE-2010-2291
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312527
|
- |
|
mcafee
|
unified_threat_management_firewall_firmware
|
Cross-site scripting (XSS) vulnerability in cgi-bin/cgix/help in McAfee Unified Threat Management (UTM) Firewall (formerly SnapGear) firmware 3.0.0 through 4.0.6 allows remote attackers to inject arb…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2290
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312528
|
- |
|
juniper
|
secure_access
|
Open redirect vulnerability in dana/home/homepage.cgi in Juniper Networks IVE 6.5R1 (Build 14599) and 6.5R2 (Build 14951) allows remote attackers to redirect users to arbitrary web sites and conduct …
|
CWE-20
Improper Input Validation
|
CVE-2010-2289
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312529
|
- |
|
juniper
|
secure_access
|
Cross-site scripting (XSS) vulnerability in dana/nc/ncrun.cgi in Juniper Networks IVE 6.5R1 (Build 14599) and 6.5R2 (Build 14951) allows remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2288
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312530
|
- |
|
wireshark
|
wireshark
|
Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2287
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
