|
345521
|
- |
|
cmscout
|
cmscout
|
Cross-site scripting (XSS) vulnerability in the Search Site in CMScout 2.09, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOT…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2154
|
2017-08-17 10:32 |
2010-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345522
|
- |
|
isc
|
dhcp
|
ISC DHCP 4.1 before 4.1.1-P1 and 4.0 before 4.0.2-P1 allows remote attackers to cause a denial of service (server exit) via a zero-length client ID.
|
CWE-189
Numeric Errors
|
CVE-2010-2156
|
2017-08-17 10:32 |
2010-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345523
|
- |
|
php
|
php
|
The (1) trim, (2) ltrim, (3) rtrim, and (4) substr_replace functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information (memory contents…
|
CWE-200
Information Exposure
|
CVE-2010-2190
|
2017-08-17 10:32 |
2010-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345524
|
- |
|
php
|
php
|
The (1) parse_str, (2) preg_match, (3) unpack, and (4) pack functions; the (5) ZEND_FETCH_RW, (6) ZEND_CONCAT, and (7) ZEND_ASSIGN_CONCAT opcodes; and the (8) ArrayObject::uasort method in PHP 5.2 th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2191
|
2017-08-17 10:32 |
2010-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345525
|
- |
|
rpm
|
rpm
|
rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ;~ (semicolon tilde)…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2197
|
2017-08-17 10:32 |
2010-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345526
|
- |
|
rpm
|
rpm
|
lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade or deletion of the file in an RPM package remova…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2199
|
2017-08-17 10:32 |
2010-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345527
|
- |
|
gambitdesign
|
bandwidth_meter
|
Multiple cross-site scripting (XSS) vulnerabilities in Gambit Design Bandwidth Meter, 0.72 and possibly 1.2, allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) vie…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2260
|
2017-08-17 10:32 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345528
|
- |
|
galileo_students
|
team_weborf
|
Galileo Students Team Weborf before 0.12.1 allows remote attackers to cause a denial of service (crash) via a crafted Range header.
|
CWE-20
Improper Input Validation
|
CVE-2010-2262
|
2017-08-17 10:32 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345529
|
- |
|
uzbl
|
uzbl
|
The eval_js function in uzbl-core.c in Uzbl before 2010.01.05 exposes the run method of the Uzbl object, which allows remote attackers to execute arbitrary commands via JavaScript code.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0011
|
2017-08-17 10:31 |
2010-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345530
|
- |
|
cisco
|
ios_xr
|
Unspecified vulnerability in the sshd_child_handler process in the SSH server in Cisco IOS XR 3.4.1 through 3.7.0 allows remote attackers to cause a denial of service (process crash and memory consum…
|
NVD-CWE-noinfo
|
CVE-2010-0137
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
