|
300281
|
- |
|
valarsoft
|
webmatic
|
SQL injection vulnerability in index.php in Webmatic allows remote attackers to execute arbitrary SQL commands via the p parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4808
|
2024-11-21 10:21 |
2011-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300282
|
- |
|
coppermine-gallery
|
coppermine_photo_gallery
|
Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.4.27 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4667
|
2024-11-21 10:21 |
2011-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300283
|
- |
|
google
|
android
|
The Android browser in Android before 2.3.4 allows remote attackers to obtain SD card contents via crafted content:// URIs, related to (1) BrowserActivity.java and (2) BrowserSettings.java in com/and…
|
CWE-200
Information Exposure
|
CVE-2010-4804
|
2024-11-21 10:21 |
2011-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300284
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Unspecified vulnerability in the News module in CMS Made Simple (CMSMS) before 1.9.1 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2010-4663
|
2024-11-21 10:21 |
2011-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300285
|
- |
|
ibm
|
web_content_manager
|
Race condition in IBM Web Content Manager (WCM) 7.0.0.1 before CF003 allows remote authenticated users to cause a denial of service (infinite recursive query) via unspecified vectors, related to a St…
|
CWE-362
Race Condition
|
CVE-2010-4807
|
2024-11-21 10:21 |
2011-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300286
|
- |
|
ibm
|
web_content_manager
|
The authoring tool in IBM Web Content Manager (WCM) 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users to bypass intended access restrictions on draft creation by leveraging certain r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4806
|
2024-11-21 10:21 |
2011-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300287
|
7.5 |
HIGH
Network
|
linux
redhat
|
linux_kernel
enterprise_linux
|
The socket implementation in net/core/sock.c in the Linux kernel before 2.6.35 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service by se…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2010-4805
|
2024-11-21 10:21 |
2011-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300288
|
- |
|
libtiff
|
libtiff
|
Integer overflow in the ReadDirectory function in tiffdump.c in tiffdump in LibTIFF before 3.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified …
|
CWE-189
Numeric Errors
|
CVE-2010-4665
|
2024-11-21 10:21 |
2011-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300289
|
- |
|
mojolicious
|
mojolicious
|
Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2010-4803
|
2024-11-21 10:21 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300290
|
- |
|
mojolicious
|
mojolicious
|
Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified impact and remote attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2010-4802
|
2024-11-21 10:21 |
2011-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
