|
345641
|
- |
|
typo3
|
typo3
|
Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack …
|
NVD-CWE-noinfo
|
CVE-2010-0286
|
2017-08-17 10:31 |
2010-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345642
|
- |
|
lighttpd
|
lighttpd
|
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a …
|
CWE-399
Resource Management Errors
|
CVE-2010-0295
|
2017-08-17 10:31 |
2010-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345643
|
- |
|
maildrop
|
maildrop
|
main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain priv…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0301
|
2017-08-17 10:31 |
2010-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345644
|
- |
|
dinko_korunic
|
hybserv2
|
mystring.c in hybserv in IRCD-Hybrid (aka Hybrid2 IRC Services) 1.9.2 through 1.9.4 allows remote attackers to cause a denial of service (daemon crash) via a ":help \t" private message to the MemoSer…
|
CWE-20
Improper Input Validation
|
CVE-2010-0303
|
2017-08-17 10:31 |
2010-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345645
|
- |
|
process-one
|
ejabberd
|
ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.
|
CWE-20
Improper Input Validation
|
CVE-2010-0305
|
2017-08-17 10:31 |
2010-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345646
|
- |
|
bitscripts
|
bits_video_script
|
Cross-site scripting (XSS) vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote attackers to inject arbitrary web script or HTML via the order parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0365
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345647
|
- |
|
bitscripts
|
bits_video_script
|
Multiple unrestricted file upload vulnerabilities in (1) register.php and (2) addvideo.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allow remote attackers to execute arbitrary code by …
|
CWE-20
Improper Input Validation
|
CVE-2010-0366
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345648
|
- |
|
bitscripts
|
bits_video_script
|
Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, and possibly 2.04, allow remote attackers to execute arbitrary PHP code via a URL in the rowptem[tem…
|
CWE-94
Code Injection
|
CVE-2010-0367
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345649
|
- |
|
hitmaaan
|
hitmaaan_gallery
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Hitmaaan Gallery 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) gall and (2) levela parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0371
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345650
|
- |
|
hong_chuyen
|
com_articlemanager
|
SQL injection vulnerability in the Articlemanager (com_articlemanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the artid parameter in a display action to i…
|
CWE-89
SQL Injection
|
CVE-2010-0372
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
