|
300571
|
- |
|
sixapart
|
movabletype
|
Multiple unspecified vulnerabilities in Movable Type 4.x before 4.35 and 5.x before 5.04 have unknown impact and attack vectors related to the (1) mt:AssetProperty and (2) mt:EntryFlag tags.
|
NVD-CWE-noinfo
|
CVE-2010-4509
|
2024-11-21 10:21 |
2010-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300572
|
- |
|
mozilla
|
firefox
|
The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 does not properly perform proxy upgrade negotiation, which has unspecified impact and remote attack vectors, related to an "inher…
|
NVD-CWE-noinfo
|
CVE-2010-4508
|
2024-11-21 10:21 |
2010-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300573
|
- |
|
injader
|
injader
|
Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) un and (2) pw parameters.
|
CWE-89
SQL Injection
|
CVE-2010-4505
|
2024-11-21 10:21 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300574
|
- |
|
intelliants
|
esyndicat
|
Multiple cross-site scripting (XSS) vulnerabilities in eSyndiCat Directory 2.3 allow remote attackers to inject arbitrary web script or HTML via the title parameter to (1) suggest-category.php and (2…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4504
|
2024-11-21 10:21 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300575
|
- |
|
aigaion
|
aigaion
|
SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows remote attackers to execute arbitrary SQL commands via the ID parameter in an export action.
|
CWE-89
SQL Injection
|
CVE-2010-4503
|
2024-11-21 10:21 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300576
|
- |
|
ca
|
internet_security_suite_plus_2010
|
Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service (pool corruption) and execute arbitrary code via crafted arguments to t…
|
CWE-189
Numeric Errors
|
CVE-2010-4502
|
2024-11-21 10:21 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300577
|
- |
|
mrcgiguy
|
freeticket
|
Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY (MCG) FreeTicket 1.0.0, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) name,…
|
CWE-89
SQL Injection
|
CVE-2010-4500
|
2024-11-21 10:21 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300578
|
- |
|
phpmyadmin
|
phpmyadmin
|
error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1, allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted BBcode tag containing "@" characters, as de…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4480
|
2024-11-21 10:21 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300579
|
- |
|
google
xmlsoft
apple
opensuse
suse
fedoraproject
redhat
debian
hp
apache
|
chrome
libxml2
mac_os_x
itunes
safari
iphone_os
opensuse
suse_linux_enterprise_server
fedora
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_worksta…
|
Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have un…
|
CWE-415
Double Free
|
CVE-2010-4494
|
2024-11-21 10:21 |
2010-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300580
|
- |
|
google
debian
|
chrome
debian_linux
|
Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service via vectors related to the handling of mouse dragging events.
|
CWE-416
Use After Free
|
CVE-2010-4493
|
2024-11-21 10:21 |
2010-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
