|
346491
|
- |
|
maildrop
|
maildrop
|
main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain priv…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0301
|
2017-08-17 10:31 |
2010-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346492
|
- |
|
dinko_korunic
|
hybserv2
|
mystring.c in hybserv in IRCD-Hybrid (aka Hybrid2 IRC Services) 1.9.2 through 1.9.4 allows remote attackers to cause a denial of service (daemon crash) via a ":help \t" private message to the MemoSer…
|
CWE-20
Improper Input Validation
|
CVE-2010-0303
|
2017-08-17 10:31 |
2010-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346493
|
- |
|
process-one
|
ejabberd
|
ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.
|
CWE-20
Improper Input Validation
|
CVE-2010-0305
|
2017-08-17 10:31 |
2010-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346494
|
- |
|
bitscripts
|
bits_video_script
|
Cross-site scripting (XSS) vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote attackers to inject arbitrary web script or HTML via the order parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0365
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346495
|
- |
|
bitscripts
|
bits_video_script
|
Multiple unrestricted file upload vulnerabilities in (1) register.php and (2) addvideo.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allow remote attackers to execute arbitrary code by …
|
CWE-20
Improper Input Validation
|
CVE-2010-0366
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346496
|
- |
|
bitscripts
|
bits_video_script
|
Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, and possibly 2.04, allow remote attackers to execute arbitrary PHP code via a URL in the rowptem[tem…
|
CWE-94
Code Injection
|
CVE-2010-0367
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346497
|
- |
|
hitmaaan
|
hitmaaan_gallery
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Hitmaaan Gallery 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) gall and (2) levela parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0371
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346498
|
- |
|
hong_chuyen
|
com_articlemanager
|
SQL injection vulnerability in the Articlemanager (com_articlemanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the artid parameter in a display action to i…
|
CWE-89
SQL Injection
|
CVE-2010-0372
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346499
|
- |
|
joomla
|
com_libros
|
SQL injection vulnerability in the libros (com_libros) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-0373
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346500
|
- |
|
codingfish
|
com_marketplace
|
Cross-site scripting (XSS) vulnerability in the Marketplace (com_marketplace) component 1.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the catid parameter in a sho…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0374
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
