|
298271
|
8.8 |
HIGH
Network
|
liferay
|
liferay_portal
|
Liferay Portal through 6.2.10 allows remote authenticated users to execute arbitrary shell commands via a crafted Velocity template.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-5327
|
2024-11-21 10:23 |
2017-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298272
|
9.8 |
CRITICAL
Network
|
redhat
linuxfoundation
oracle
|
enterprise_linux_server_eus
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
foomatic-filters
linux
enterprise_linux
|
Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly ex…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5325
|
2024-11-21 10:23 |
2016-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298273
|
- |
|
gehealthcare
|
revolution_xq\/i
|
The Acquisition Workstation for the GE Healthcare Revolution XQ/i has a password of adw3.1 for the sdc user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this passw…
|
CWE-255
Credentials Management
|
CVE-2010-5310
|
2024-11-21 10:23 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298274
|
- |
|
gehealthcare
|
cadstream_server_firmware
|
GE Healthcare CADStream Server has a default password of confirma for the admin user, which has unspecified impact and attack vectors.
|
CWE-255
Credentials Management
|
CVE-2010-5309
|
2024-11-21 10:23 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298275
|
- |
|
gehealthcare
|
optima_mr360_firmware
|
GE Healthcare Optima MR360 does not require authentication for the HIPAA emergency login procedure, which allows physically proximate users to gain access via an arbitrary username in the Emergency L…
|
CWE-255
Credentials Management
|
CVE-2010-5308
|
2024-11-21 10:23 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298276
|
- |
|
gehealthcare
|
optima_mr360_firmware
|
The HIPAA configuration interface in GE Healthcare Optima MR360 has a password of (1) operator for the root account, (2) adw2.0 for the admin account, and (3) adw2.0 for the sdc account, which has un…
|
CWE-255
Credentials Management
|
CVE-2010-5307
|
2024-11-21 10:23 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298277
|
- |
|
gehealthcare
|
optima_ct540_firmware
optima_ct680_firmware
optima_ct520_firmware
|
GE Healthcare Optima CT680, CT540, CT640, and CT520 has a default password of #bigguy for the root user, which has unspecified impact and attack vectors.
|
CWE-255
Credentials Management
|
CVE-2010-5306
|
2024-11-21 10:23 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298278
|
- |
|
novell
|
zenworks_configuration_management
|
Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 before 10.3 allows remote attackers to execute arbitrary cod…
|
CWE-22
Path Traversal
|
CVE-2010-5324
|
2024-11-21 10:23 |
2015-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298279
|
- |
|
novell
|
zenworks_configuration_management
|
Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 before 10.3 allows remote attackers to execute arbitrary cod…
|
CWE-22
Path Traversal
|
CVE-2010-5323
|
2024-11-21 10:23 |
2015-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298280
|
- |
|
ajsquare
|
zeuscart
|
Cross-site scripting (XSS) vulnerability in ZeusCart 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5322
|
2024-11-21 10:23 |
2015-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
