|
301081
|
- |
|
ibm
|
websphere_application_server
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Integrated Solutions Console (aka administrative console) in IBM WebSphere Application Server (WAS) 7.0.0.13 and earlier allow remote…
|
CWE-352
Origin Validation Error
|
CVE-2010-3271
|
2024-11-21 10:18 |
2011-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301082
|
- |
|
orbeon
|
forms
|
oxf/xml/xerces/XercesSAXParserFactoryImpl.java in the xforms-server component in the XForms service in Orbeon Forms before 3.9 does not properly restrict DTDs in Ajax requests, which allows remote at…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3260
|
2024-11-21 10:18 |
2011-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301083
|
- |
|
horde
|
gollem
|
Cross-site scripting (XSS) vulnerability in view.php in the file viewer in Horde Gollem before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the file parameter in a view_fi…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3447
|
2024-11-21 10:18 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301084
|
- |
|
videolan
|
vlc_media_player
|
libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3276
|
2024-11-21 10:18 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301085
|
- |
|
videolan
|
vlc_media_player
|
libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3275
|
2024-11-21 10:18 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301086
|
- |
|
moinejf
fedoraproject
|
abcm2ps
fedora
|
Multiple buffer overflows in abcm2ps before 5.9.12 might allow remote attackers to execute arbitrary code via (1) a crafted input file, related to the PUT0 and PUT1 output macros; (2) a crafted input…
|
CWE-120
Classic Buffer Overflow
|
CVE-2010-3441
|
2024-11-21 10:18 |
2011-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301087
|
- |
|
zohocorp
|
manageengine_adselfservice_plus
|
Multiple cross-site scripting (XSS) vulnerabilities in EmployeeSearch.cc in the Employee Search Engine in ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allow remote attackers to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3274
|
2024-11-21 10:18 |
2011-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301088
|
- |
|
zohocorp
|
manageengine_adselfservice_plus
|
ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allows remote attackers to reset user passwords, and consequently obtain access to arbitrary user accounts, by providing a user id to accoun…
|
CWE-20
Improper Input Validation
|
CVE-2010-3273
|
2024-11-21 10:18 |
2011-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301089
|
- |
|
zohocorp
|
manageengine_adselfservice_plus
|
accounts/ValidateAnswers in the security-questions implementation in ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 makes it easier for remote attackers to reset user passwords, and conse…
|
CWE-20
Improper Input Validation
|
CVE-2010-3272
|
2024-11-21 10:18 |
2011-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301090
|
- |
|
cisco
|
webex_meeting_center
|
Stack-based buffer overflow in Cisco WebEx Meeting Center T27LB before SP21 EP3 and T27LC before SP22 allows user-assisted remote authenticated users to execute arbitrary code by providing a crafted …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3270
|
2024-11-21 10:18 |
2011-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
