|
347741
|
- |
|
cisco
|
tftp_server
|
Cisco TFTP Server 1.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted (1) read (aka RRQ) or (2) write (aka WRQ) request, or other TFTP packet. NOTE: some of these d…
|
CWE-20
Improper Input Validation
|
CVE-2010-1174
|
2017-08-17 10:32 |
2010-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347742
|
- |
|
apple
|
safari
|
Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) via a JavaScript loop that attempts to construct an infinitely long string.
|
NVD-CWE-noinfo
|
CVE-2010-1178
|
2017-08-17 10:32 |
2010-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347743
|
- |
|
apple
|
safari
|
Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long exception string in a throw state…
|
CWE-94
Code Injection
|
CVE-2010-1180
|
2017-08-17 10:32 |
2010-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347744
|
- |
|
microsoft
|
27mhz_wireless_keyboard
|
The Microsoft wireless keyboard uses XOR encryption with a key derived from the MAC address, which makes it easier for remote attackers to obtain keystroke information and inject arbitrary commands v…
|
CWE-310
Cryptographic Issues
|
CVE-2010-1184
|
2017-08-17 10:32 |
2010-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347745
|
- |
|
alex_rabe
|
nextgen_gallery
|
Cross-site scripting (XSS) vulnerability in xml/media-rss.php in the NextGEN Gallery plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the mode para…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1186
|
2017-08-17 10:32 |
2010-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347746
|
- |
|
mm_forum
|
mmforum
|
Cross-site scripting (XSS) vulnerability in the mm_forum extension 1.8.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-1218
|
2017-08-17 10:32 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347747
|
- |
|
com_janews
|
com_janews
|
Directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.p…
|
CWE-22
Path Traversal
|
CVE-2010-1219
|
2017-08-17 10:32 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347748
|
- |
|
apache
|
activemq
|
Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2010-1244
|
2017-08-17 10:32 |
2010-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347749
|
- |
|
kjetiltroan
|
webmaid_cms
|
Multiple PHP remote file inclusion vulnerabilities in WebMaid CMS 0.2-6 Beta and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) template, (2) menu, (3) events, and …
|
CWE-94
Code Injection
|
CVE-2010-1266
|
2017-08-17 10:32 |
2010-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347750
|
- |
|
fh54
|
justvisual
|
Directory traversal vulnerability in index.php in justVisual CMS 2.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files directory traversal seque…
|
CWE-22
Path Traversal
|
CVE-2010-1268
|
2017-08-17 10:32 |
2010-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
