|
356001
|
- |
|
gohigheris
|
com_jwhmcs
|
Directory traversal vulnerability in the J!WHMCS Integrator (com_jwhmcs) component 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to …
|
CWE-22
Path Traversal
|
CVE-2010-1977
|
2010-05-21 13:00 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356002
|
- |
|
openmairie
|
opencatalogue
|
Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via dire…
|
CWE-22
Path Traversal
|
CVE-2010-1999
|
2010-05-21 13:00 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356003
|
- |
|
ron_jerome
|
bibliography
|
Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privil…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2000
|
2010-05-21 13:00 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356004
|
- |
|
ninjitsuweb
|
civiregister
|
Cross-site scripting (XSS) vulnerability in the CiviRegister module before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2001
|
2010-05-21 13:00 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356005
|
- |
|
addison_berry
jeff_warrington
|
wordfilter
|
Cross-site scripting (XSS) vulnerability in the Wordfilter module 5.x before 5.x-1.1 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with "administer words filtered" privileges, …
|
CWE-79
Cross-site Scripting
|
CVE-2010-2002
|
2010-05-21 13:00 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356006
|
- |
|
toutvirtual
|
virtualiq
|
Multiple cross-site scripting (XSS) vulnerabilities in ToutVirtual VirtualIQ Pro 3.5 build 8691 allow remote attackers to inject arbitrary web script or HTML via the (1) addNewDept, (2) deptId, or (3…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4842
|
2010-05-21 13:00 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356007
|
- |
|
sixapart
|
movable_type
|
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in Six Apart Movable Type 5.0 and 5.01 allow remote attackers to inject arbitrary web script or HTML via unkno…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1985
|
2010-05-21 04:47 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356008
|
- |
|
mediawiki
|
mediawiki
|
MediaWiki before 1.15.2 does not prevent wiki editors from linking to images from other web sites in wiki pages, which allows editors to obtain IP addresses and other information of wiki users by add…
|
CWE-20
Improper Input Validation
|
CVE-2010-1189
|
2010-05-20 14:49 |
2010-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356009
|
- |
|
cisco
|
pgw_2200_softswitch
|
The SIP implementation on the Cisco PGW 2200 Softswitch with software before 9.7(3)S10 allows remote attackers to cause a denial of service (device crash) via a malformed session attribute, aka Bug I…
|
CWE-20
Improper Input Validation
|
CVE-2010-0603
|
2010-05-20 14:48 |
2010-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356010
|
- |
|
ffmpeg
|
ffmpeg
|
FFmpeg 0.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4637
|
2010-05-20 14:46 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
