|
304971
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read arbitrary files, determ…
|
CWE-22
Path Traversal
|
CVE-2010-2426
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304972
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read or delete arbitrary fil…
|
CWE-22
Path Traversal
|
CVE-2010-2425
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304973
|
- |
|
plone
|
plone
|
Cross-site scripting (XSS) vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 before hotfix 20100612 allows remote attackers to inject arbitrary web script or HTML via the safe_html transfo…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2422
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304974
|
- |
|
apple
|
cups
|
The cupsDoAuthentication function in auth.c in the client in CUPS before 1.4.4, when HAVE_GSSAPI is omitted, does not properly handle a demand for authorization, which allows remote CUPS servers to c…
|
CWE-399
Resource Management Errors
|
CVE-2010-2432
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304975
|
- |
|
apple
|
cups
|
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cach…
|
CWE-59
Link Following
|
CVE-2010-2431
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304976
|
- |
|
opera
|
opera_browser
|
Multiple unspecified vulnerabilities in Opera before 10.54 have unknown impact and attack vectors related to (1) "extremely severe," (2) "highly severe," (3) "moderately severe," and (4) "less severe…
|
NVD-CWE-noinfo
|
CVE-2010-2421
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304977
|
- |
|
fenrir-inc
|
activegeckobrowser
|
Multiple unspecified vulnerabilities in Fenrir Inc. ActiveGeckoBrowser 1.0.0 and 1.0.5 alpha, a module for the Sleipnir web browser, allow remote attackers to cause a denial of service (crash) and po…
|
NVD-CWE-noinfo
|
CVE-2010-2420
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304978
|
- |
|
activewebsoftwares
|
ewebquiz
|
SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote attackers to execute arbitrary SQL commands via the QuizType parameter, a different vector than CVE-2007…
|
CWE-89
SQL Injection
|
CVE-2010-2359
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304979
|
- |
|
jeffkilroy
|
nakid_cms
|
PHP remote file inclusion vulnerability in modules/catalog/upload_photo.php in Nakid CMS 0.5.2, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote attackers to execute a…
|
CWE-94
Code Injection
|
CVE-2010-2358
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304980
|
- |
|
eicrasoft
|
eicra_realestate_script
|
SQL injection vulnerability in index.php in Eicra Realestate Script 1.0 and 1.6.0 allows remote attackers to execute arbitrary SQL commands via the p_id parameter. NOTE: some of these details are ob…
|
CWE-89
SQL Injection
|
CVE-2010-2357
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
