|
345541
|
- |
|
ibm
|
domino_web_access
lotus_inotes
|
Stack-based buffer overflow in the Lotus Domino Web Access ActiveX control in IBM Lotus iNotes (aka Domino Web Access or DWA) 6.5, 7.0 before 7.0.4, 8.0, 8.0.2, and before 229.281 for Domino 8.0.2 FP…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0919
|
2017-08-17 10:32 |
2010-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345542
|
- |
|
ibm
|
lotus_inotes
|
Cross-site request forgery (CSRF) vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.281 for Domino 8.0.2 FP4 allows remote attackers to hijack the authentication of unspecif…
|
CWE-352
Origin Validation Error
|
CVE-2010-0921
|
2017-08-17 10:32 |
2010-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345543
|
- |
|
d-link
|
dkvm-ip8
|
Cross-site scripting (XSS) vulnerability in auth.asp on the D-LINK DKVM-IP8 with firmware 2282_dlinkA4_p8_20071213 allows remote attackers to inject arbitrary web script or HTML via the nickname para…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0936
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345544
|
- |
|
todoomasters
|
todoo_forum
|
Cross-site scripting (XSS) vulnerability in todooforum.php in Todoo Forum 2.0 allows remote attackers to inject arbitrary web script or HTML via the id_forum parameter in a post action.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0938
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345545
|
- |
|
visialis
|
abb_forum
|
Visialis ABB Forum 1.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for fpdb/abb.mdb.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0939
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345546
|
- |
|
sanusart
|
simple_php_guestbook
|
Cross-site scripting (XSS) vulnerability in guestbook.php in Simple PHP Guestbook 1.0 allows remote attackers to inject arbitrary web script or HTML via the action parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0940
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345547
|
- |
|
web-site-development
|
etek_systems_hit_counter
|
Multiple cross-site scripting (XSS) vulnerabilities in eTek Systems Hit Counter 2.0 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php, (2) inc/login.php…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0941
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345548
|
- |
|
jvideodirect
|
com_jvideodirect
|
Directory traversal vulnerability in the jVideoDirect (com_jvideodirect) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.…
|
CWE-22
Path Traversal
|
CVE-2010-0942
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345549
|
- |
|
joomlart
|
com_jashowcase
|
Directory traversal vulnerability in the JA Showcase (com_jashowcase) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in a jashowc…
|
CWE-22
Path Traversal
|
CVE-2010-0943
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345550
|
- |
|
thorsten_riess
|
com_jcollection
|
Directory traversal vulnerability in the JCollection (com_jcollection) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.ph…
|
CWE-22
Path Traversal
|
CVE-2010-0944
|
2017-08-17 10:32 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
