|
347101
|
- |
|
createch-group
|
lisk_cms
|
Multiple SQL injection vulnerabilities in LiSK CMS 4.4 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter in a view_inbox action to cp/cp_messages.php or (2) the id par…
|
CWE-89
SQL Injection
|
CVE-2010-2015
|
2010-05-25 02:30 |
2010-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347102
|
- |
|
bukulokomedia
|
lokomedia_cms
|
Cross-site scripting (XSS) vulnerability in hasil-pencarian.html in Lokomedia CMS 1.4.1 and 2.0 allows remote attackers to inject arbitrary web script or HTML via the kata parameter. NOTE: some of t…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2017
|
2010-05-25 02:30 |
2010-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347103
|
- |
|
bukulokomedia
|
lokomedia_cms
|
SQL injection vulnerability in downlot.php in Lokomedia CMS 1.4.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the file parameter. NOTE: the prov…
|
CWE-89
SQL Injection
|
CVE-2010-2019
|
2010-05-25 02:30 |
2010-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347104
|
- |
|
apple
|
java
|
Apple Java for Mac OS X 10.5 before Update 7 and Java for Mac OS X 10.6 before Update 2 do not properly handle mediaLibImage objects, which allows remote attackers to execute arbitrary code or cause …
|
CWE-399
Resource Management Errors
|
CVE-2010-0538
|
2010-05-24 13:00 |
2010-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347105
|
- |
|
apple
|
java_1.5
java_1.6
|
Integer signedness error in the window drawing implementation in Apple Java for Mac OS X 10.5 before Update 7 and Java for Mac OS X 10.6 before Update 2 allows remote attackers to execute arbitrary c…
|
CWE-189
Numeric Errors
|
CVE-2010-0539
|
2010-05-24 13:00 |
2010-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347106
|
- |
|
peter_hocherl
|
com_tweetla
|
Directory traversal vulnerability in the TweetLA (com_tweetla) component 1.0.1 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
|
CWE-22
Path Traversal
|
CVE-2010-1533
|
2010-05-24 13:00 |
2010-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347107
|
- |
|
peter_hocherl
|
com_travelbook
|
Directory traversal vulnerability in the TRAVELbook (com_travelbook) component 1.0.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (d…
|
CWE-22
Path Traversal
|
CVE-2010-1535
|
2010-05-24 13:00 |
2010-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347108
|
- |
|
myblog
|
com_myblog
|
Directory traversal vulnerability in index.php in the MyBlog (com_myblog) component 3.0.329 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the task parameter. NOTE…
|
CWE-22
Path Traversal
|
CVE-2010-1540
|
2010-05-24 13:00 |
2010-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347109
|
- |
|
bsplayer
|
bs.player
|
Stack-based buffer overflow in the media library in BS.Global BS.Player 2.51 build 1022, 2.41 build 1003, and possibly other versions allows user-assisted remote attackers to execute arbitrary code v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2009
|
2010-05-24 13:00 |
2010-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347110
|
- |
|
microsoft
|
dynamics_gp
|
Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, which makes it easier for remote authenticated users to obtain sensitive informatio…
|
CWE-310
Cryptographic Issues
|
CVE-2010-2011
|
2010-05-24 13:00 |
2010-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
