|
302781
|
- |
|
modxcms
|
evolution
|
SQL injection vulnerability in MODx Evolution 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via unknown vectors related to AjaxSearch.
|
CWE-89
SQL Injection
|
CVE-2010-3929
|
2024-11-21 10:19 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302782
|
- |
|
apache
|
couchdb
|
Multiple cross-site scripting (XSS) vulnerabilities in the web administration interface (aka Futon) in Apache CouchDB 0.8.0 through 1.0.1 allow remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3854
|
2024-11-21 10:19 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302783
|
- |
|
symantec
|
im_manager
|
Eval injection vulnerability in IMAdminSchedTask.asp in the administrative interface for Symantec IM Manager 8.4.16 and earlier allows remote attackers to execute arbitrary code via unspecified param…
|
CWE-94
Code Injection
|
CVE-2010-3719
|
2024-11-21 10:19 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302784
|
- |
|
apache
debian
canonical
|
openoffice
debian_linux
ubuntu_linux
|
soffice in OpenOffice.org (OOo) 3.x before 3.3 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current…
|
CWE-22
Path Traversal
|
CVE-2010-3689
|
2024-11-21 10:19 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302785
|
- |
|
lunascape
|
lunascape
|
Untrusted search path vulnerability in Lunascape before 6.4.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
|
NVD-CWE-Other
|
CVE-2010-3927
|
2024-11-21 10:19 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302786
|
- |
|
linux-pam
|
linux-pam
|
pam_namespace.c in the pam_namespace module in Linux-PAM (aka pam) before 1.1.3 uses the environment of the invoking application or service during execution of the namespace.init script, which might …
|
NVD-CWE-Other
|
CVE-2010-3853
|
2024-11-21 10:19 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302787
|
- |
|
libfuse_project
|
libfuse
|
FUSE, possibly 2.8.5 and earlier, allows local users to create mtab entries with arbitrary pathnames, and consequently unmount any filesystem, via a symlink attack on the parent directory of the moun…
|
CWE-59
Link Following
|
CVE-2010-3879
|
2024-11-21 10:19 |
2011-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302788
|
- |
|
rocomotion
|
pm_bbs
pplog_2
p_forum
p_diary_r
pm_forum
p_link_compact
pplog
p_board
p_link
p_up_board
|
Cross-site scripting (XSS) vulnerability in multiple Rocomotion products, including P board 1.18 and other versions, P forum 1.30 and earlier, P up board 1.38 and other versions, P diary R 1.13 and e…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3931
|
2024-11-21 10:19 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302789
|
- |
|
wayneeseguin
|
ruby_version_manager
|
Ruby Version Manager (RVM) before 1.2.1 writes file contents to a terminal without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via a crafted …
|
NVD-CWE-Other
|
CVE-2010-3928
|
2024-11-21 10:19 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302790
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle Document Capture component in Oracle Fusion Middleware 10.1.3.4 and 10.1.3.5 allows remote attackers to affect integrity and availability via unknown vectors r…
|
NVD-CWE-noinfo
|
CVE-2010-3599
|
2024-11-21 10:19 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
