|
358461
|
- |
|
adobe
|
coldfusion
|
Per: http://www.adobe.com/support/security/bulletins/apsb10-11.html
'Affected software versions
ColdFusion 8.0, 8.0.1, 9.0 and earlier versions for Windows, Macintosh and UNIX'
|
CWE-79
Cross-site Scripting
|
CVE-2009-3467
|
2010-05-14 13:00 |
2010-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358462
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Cross-site scripting (XSS) vulnerability in admin/editprefs.php in the backend in CMS Made Simple (CMSMS) before 1.7.1 might allow remote attackers to inject arbitrary web script or HTML via the date…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1482
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358463
|
- |
|
openmairie
|
openannuaire
|
Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via direct…
|
CWE-22
Path Traversal
|
CVE-2010-1920
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358464
|
- |
|
openmairie
|
openannuaire
|
Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om par…
|
CWE-94
Code Injection
|
CVE-2010-1921
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358465
|
- |
|
rifat_kurban
|
tekno.portal
|
SQL injection vulnerability in makale.php in tekno.Portal 0.1b allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-2817.
|
CWE-89
SQL Injection
|
CVE-2010-1925
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358466
|
- |
|
openmairie
|
opencourrier
|
Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local fi…
|
CWE-22
Path Traversal
|
CVE-2010-1926
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358467
|
- |
|
openmairie
|
opencourrier
|
Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in t…
|
CWE-94
Code Injection
|
CVE-2010-1927
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358468
|
- |
|
openmairie
|
openplanning
|
Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om par…
|
CWE-94
Code Injection
|
CVE-2010-1934
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358469
|
- |
|
xoops
|
xoops
|
The activation resend function in the Profiles module in XOOPS before 2.4.1 sends activation codes in response to arbitrary activation requests, which allows remote attackers to bypass administrative…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4851
|
2010-05-13 13:00 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
358470
|
- |
|
gnustep
|
gnustep_base
|
Integer overflow in the load_iface function in Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 might allow context-dependent attackers to execute arbitrary code via a (1) file or (2) socket th…
|
CWE-189
Numeric Errors
|
CVE-2010-1620
|
2010-05-13 06:07 |
2010-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
