|
303681
|
- |
|
usebb
|
usebb
|
rss.php in UseBB before 1.0.11 does not properly handle forum configurations in which a user has the view permission but not the read permission, which allows remote attackers to bypass intended acce…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3713
|
2024-11-21 10:19 |
2010-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303682
|
- |
|
joomla
|
joomla\!
|
Cross-site scripting (XSS) vulnerability in Joomla! 1.5.x before 1.5.21 and 1.6.x before 1.6.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving "multiple encoded e…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3712
|
2024-11-21 10:19 |
2010-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303683
|
- |
|
pidgin
|
pidgin
|
libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purple_base64_decode function, which allows remote authenticated users to cause a denial of service (NULL pointer d…
|
CWE-20
Improper Input Validation
|
CVE-2010-3711
|
2024-11-21 10:19 |
2010-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303684
|
- |
|
adobe
|
shockwave_player
|
The Director module (dirapi.dll) in Adobe Shockwave Player before 11.5.9.615 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie wi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3653
|
2024-11-21 10:19 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303685
|
- |
|
typo3
|
typo3
|
The t3lib_div::validEmail function in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly restrict input to filter_var FILTER_VALIDATE_EMAIL operations in PHP, whi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3717
|
2024-11-21 10:19 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303686
|
- |
|
typo3
|
typo3
|
The be_user_creation task in TYPO3 4.2.x before 4.2.15 and 4.3.x before 4.3.7 allows remote authenticated users to gain privileges via a crafted POST request that creates a user account with arbitrar…
|
CWE-20
Improper Input Validation
|
CVE-2010-3716
|
2024-11-21 10:19 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303687
|
- |
|
typo3
|
typo3
|
Multiple cross-site scripting (XSS) vulnerabilities in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors …
|
CWE-79
Cross-site Scripting
|
CVE-2010-3715
|
2024-11-21 10:19 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303688
|
- |
|
typo3
|
typo3
|
The jumpUrl (aka access tracking) implementation in tslib/class.tslib_fe.php in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly compare certain hash values dur…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3714
|
2024-11-21 10:19 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303689
|
- |
|
php
|
php
|
Stack consumption vulnerability in the filter_var function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3, when FILTER_VALIDATE_EMAIL mode is used, allows remote attackers to cause a denial of s…
|
CWE-399
Resource Management Errors
|
CVE-2010-3710
|
2024-11-21 10:19 |
2010-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303690
|
- |
|
sun
|
jre
jdk
sdk
|
Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote attackers to affect confidentiality, int…
|
NVD-CWE-noinfo
|
CVE-2010-3574
|
2024-11-21 10:19 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
