|
354831
|
- |
|
perlunity
|
phpunity.newsmanager
|
Directory traversal vulnerability in misc/tell_a_friend/tell.php in phpunity.newsmanager allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.
|
CWE-22
Path Traversal
|
CVE-2010-0799
|
2010-03-3 14:00 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354832
|
- |
|
autartica
|
com_autartitarot
|
Directory traversal vulnerability in the AutartiTarot (com_autartitarot) component 1.0.3 for Joomla! allows remote authenticated users, with "Public Back-end" group permissions, to read arbitrary fil…
|
CWE-22
Path Traversal
|
CVE-2010-0801
|
2010-03-3 14:00 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354833
|
- |
|
aleinbeen
|
\(nv2\)_awards
|
SQL injection vulnerability in index.php in (nv2) Awards 1.1.0, a modification for Invision Power Board, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view actio…
|
CWE-89
SQL Injection
|
CVE-2010-0802
|
2010-03-3 14:00 |
2010-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354834
|
- |
|
sun
|
java_system_application_server
|
Cross-site scripting (XSS) vulnerability in Sun Java System Application Server 7 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-0742
|
2010-03-2 14:36 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354835
|
- |
|
basic-cms
|
basic-cms
|
Cross-site scripting (XSS) vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the nav_id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0695
|
2010-03-2 14:00 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354836
|
- |
|
ibm
|
websphere_portal
|
Cross-site scripting (XSS) vulnerability in the Portlet Palette in IBM WebSphere Portal 6.0.1.5 wp6015_008_01 allows remote attackers to inject arbitrary web script or HTML via the search field.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0704
|
2010-03-2 14:00 |
2010-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354837
|
- |
|
moinmo
|
moinmoin
|
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain s…
|
CWE-200
Information Exposure
|
CVE-2010-0667
|
2010-03-1 14:00 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354838
|
- |
|
greatjoomla
|
scriptegrator_plugin
|
Multiple directory traversal vulnerabilities in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allow remote attackers to include and execute arbitrary local files via directory traversal sequ…
|
CWE-22
Path Traversal
|
CVE-2010-0760
|
2010-03-1 14:00 |
2010-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354839
|
- |
|
gnome
|
screensaver
|
gnome-screensaver before 2.28.2 allows physically proximate attackers to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then discon…
|
NVD-CWE-Other
|
CVE-2010-0414
|
2010-02-26 16:11 |
2010-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354840
|
- |
|
hp
|
dreamscreen
|
Unspecified vulnerability on the HP DreamScreen 100 and 130 with firmware before 1.6.0.0, when using a web-connected configuration, allows remote attackers to obtain sensitive information via unknown…
|
NVD-CWE-noinfo
|
CVE-2010-0446
|
2010-02-26 16:11 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
