|
345651
|
- |
|
joomla
|
com_libros
|
SQL injection vulnerability in the libros (com_libros) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-0373
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345652
|
- |
|
codingfish
|
com_marketplace
|
Cross-site scripting (XSS) vulnerability in the Marketplace (com_marketplace) component 1.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the catid parameter in a sho…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0374
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345653
|
- |
|
jce-tech
|
php_calendars_script
|
SQL injection vulnerability in product_list.php in JCE-Tech PHP Calendars, downloaded 2010-01-11, allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the provenanc…
|
CWE-89
SQL Injection
|
CVE-2010-0375
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345654
|
- |
|
jce-tech
|
php_calendars_script
|
Cross-site scripting (XSS) vulnerability in product_list.php in JCE-Tech PHP Calendars, downloaded 2010-01-11, allows remote attackers to inject arbitrary web script or HTML via the cat parameter. N…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0376
|
2017-08-17 10:31 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345655
|
- |
|
sun
|
java_system_web_server
|
Multiple heap-based buffer overflows in (1) webservd and (2) the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service (daemon crash) and possibl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0387
|
2017-08-17 10:31 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345656
|
- |
|
sun
|
java_system_web_server
|
Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (daemon crash) and possibly have u…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-0388
|
2017-08-17 10:31 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345657
|
- |
|
nanosleep
|
trac-git
|
PyGIT.py in the Trac Git plugin (trac-git) before 0.0.20080710-3+lenny1 and before 0.0.20090320-1 on Debian GNU/Linux, when enabled in Trac, allows remote attackers to execute arbitrary commands via …
|
CWE-20
Improper Input Validation
|
CVE-2010-0394
|
2017-08-17 10:31 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345658
|
- |
|
debian
|
dpkg
|
Directory traversal vulnerability in the dpkg-source component in dpkg before 1.14.29 allows remote attackers to modify arbitrary files via a crafted Debian source archive.
|
CWE-22
Path Traversal
|
CVE-2010-0396
|
2017-08-17 10:31 |
2010-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345659
|
- |
|
gnome
|
screensaver
|
gnome-screensaver 2.28.x before 2.28.3 does not properly synchronize the state of screen locking and the unlock dialog in situations involving a change to the number of monitors, which allows physica…
|
NVD-CWE-Other
|
CVE-2010-0422
|
2017-08-17 10:31 |
2010-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345660
|
- |
|
symantec
|
altiris_notification_server
|
The web console in Symantec Altiris Notification Server 6.0.x before 6.0 SP3 R12 uses a hardcoded key that can decrypt SQL Server credentials and certain discovery credentials, and stores this key on…
|
CWE-255
Credentials Management
|
CVE-2009-3035
|
2017-08-17 10:31 |
2010-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
