|
350711
|
- |
|
novell
|
edirectory
|
Unspecified vulnerability in eMBox in Novell eDirectory 8.8 SP5 Patch 2 and earlier allows remote attackers to cause a denial of service (crash) via unknown a crafted SOAP request, a different issue …
|
NVD-CWE-noinfo
|
CVE-2010-0666
|
2010-02-22 14:00 |
2010-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350712
|
- |
|
accellion
|
secure_file_transfer_appliance
|
Static code injection vulnerability in the administrative web interface in Accellion Secure File Transfer Appliance allows remote authenticated administrators to inject arbitrary shell commands by ap…
|
CWE-94
Code Injection
|
CVE-2009-4646
|
2010-02-22 14:00 |
2010-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350713
|
- |
|
k5n
|
webcalendar
|
Cross-site request forgery (CSRF) vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password via un…
|
CWE-352
Origin Validation Error
|
CVE-2010-0638
|
2010-02-16 14:00 |
2010-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350714
|
- |
|
juniper
|
odyssey_access_client
|
Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute ar…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4643
|
2010-02-16 14:00 |
2010-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350715
|
- |
|
eicrasoft
|
eicra_car_rental-script
|
Multiple SQL injection vulnerabilities in index.php in Eicra Car Rental-Script, when the plugin_id parameter is 4, allow remote attackers to execute arbitrary SQL commands via the (1) users (username…
|
CWE-89
SQL Injection
|
CVE-2010-0631
|
2010-02-15 14:00 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350716
|
- |
|
will_estes
|
flex
|
Unspecified vulnerability in Fast Lexical Analyzer Generator (flex) before 2.5.35 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2010-0634
|
2010-02-15 14:00 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350717
|
- |
|
jevents
|
jevents_search_plugin
|
SQL injection vulnerability in the plgSearchEventsearch::onSearch method in eventsearch.php in the JEvents Search plugin 1.5 through 1.5.3 for Joomla! allows remote attackers to execute arbitrary SQL…
|
CWE-89
SQL Injection
|
CVE-2010-0635
|
2010-02-15 14:00 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350718
|
- |
|
hp
|
operations_agent
|
HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2010-0444
|
2010-02-13 16:22 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350719
|
- |
|
osticket
|
osticket
|
SQL injection vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users, with "Staff" permissions, to execute arbitrary SQL commands via the input parameter.
|
CWE-89
SQL Injection
|
CVE-2010-0605
|
2010-02-12 14:00 |
2010-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350720
|
- |
|
novaboard
|
novaboard
|
SQL injection vulnerability in index.php in NovaBoard 1.1.2 allows remote attackers to execute arbitrary SQL commands via the forums[] parameter in a search action.
|
CWE-89
SQL Injection
|
CVE-2010-0608
|
2010-02-12 14:00 |
2010-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
