|
302711
|
- |
|
nitrosecurity
|
nitroview_esm_software
|
ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the Request parameter to ess.
|
CWE-20
Improper Input Validation
|
CVE-2010-4099
|
2024-11-21 10:20 |
2010-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302712
|
- |
|
monotone
|
monotone
|
monotone before 0.48.1, when configured to allow remote commands, allows remote attackers to cause a denial of service (crash) via an empty argument to the mtn command.
|
NVD-CWE-Other
|
CVE-2010-4098
|
2024-11-21 10:20 |
2010-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302713
|
- |
|
avatic
|
aardvark_topsites_php
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Aardvark Topsites PHP 5.2.0 and 5.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) mail, (2) title, (3…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4097
|
2024-11-21 10:20 |
2010-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302714
|
- |
|
monkeysphere_project
|
monkeysphere
|
share/ma/keys_for_user in Monkeysphere 0.31 and 0.32 allows local users to execute arbitrary code via unknown manipulations related to the "monkeysphere-authentication keys-for-user" command.
|
CWE-94
Code Injection
|
CVE-2010-4096
|
2024-11-21 10:20 |
2010-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302715
|
- |
|
robo-ftp
|
robo-ftp
|
Directory traversal vulnerability in the FTP client in Serengeti Systems Incorporated Robo-FTP 3.7.3, and probably other versions before 3.7.5, allows remote FTP servers to write arbitrary files via …
|
CWE-22
Path Traversal
|
CVE-2010-4095
|
2024-11-21 10:20 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302716
|
- |
|
hp
|
operations_orchestration
|
Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9.0, when Internet Explorer 6.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified …
|
CWE-79
Cross-site Scripting
|
CVE-2010-3985
|
2024-11-21 10:20 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302717
|
- |
|
ibm
|
rational_test_lab_manager
rational_quality_manager
|
The Tomcat server in IBM Rational Quality Manager and Rational Test Lab Manager has a default password for the ADMIN account, which makes it easier for remote attackers to execute arbitrary code by l…
|
CWE-255
Credentials Management
|
CVE-2010-4094
|
2024-11-21 10:20 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302718
|
- |
|
hp
|
virtual_connect_enterprise_manager
|
Unspecified vulnerability in HP Virtual Connect Enterprise Manager (VCEM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2010-3986
|
2024-11-21 10:20 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302719
|
- |
|
ibm
|
informix_dynamic_server
|
Integer overflow in librpc.dll in portmap.exe (aka the ISM Portmapper service) in ISM before 2.20.TC1.117 in IBM Informix Dynamic Server (IDS) 7.x before 7.31.xD11, 9.x before 9.40.xC10, 10.00 before…
|
CWE-189
Numeric Errors
|
CVE-2010-4070
|
2024-11-21 10:20 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302720
|
- |
|
ibm
|
informix_dynamic_server
|
Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) 7.x through 7.31, 9.x through 9.40, 10.00 before 10.00.xC10, 11.10 before 11.10.xC3, and 11.50 before 11.50.xC3 allows remote authenti…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4069
|
2024-11-21 10:20 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
