|
305441
|
- |
|
karen_stevenson
yves_chedemois
|
cck
|
The Node Reference module in Content Construction Kit (CCK) module 5.x before 5.x-1.11 and 6.x before 6.x-2.7 for Drupal does not perform access checks before displaying referenced nodes, which allow…
|
CWE-20
Improper Input Validation
|
CVE-2010-2352
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305442
|
- |
|
novell
|
netware
|
Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2351
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305443
|
- |
|
daniel_mealha_cabrita
|
ziproxy
|
Heap-based buffer overflow in the PNG decoder in Ziproxy 3.1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNG file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2350
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305444
|
- |
|
timhillone
|
h264webcam
|
H264WebCam 3.7 allows remote attackers to cause a denial of service (crash) via a long URI in a GET request, which triggers a NULL pointer dereference. NOTE: some of these details are obtained from …
|
CWE-399
Resource Management Errors
|
CVE-2010-2349
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305445
|
- |
|
freesoftwaretoolbox
|
batch_audio_converter
|
Stack-based buffer overflow in Batch Audio Converter Lite Edition 1.0.0.0 and earlier allows remote attackers to execute arbitrary code via a long line in a .WAV file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2348
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305446
|
- |
|
sap
|
j2ee_engine_core
server_core
|
The Telnet interface in the SAP J2EE Engine Core (SAP-JEECOR) 6.40 through 7.02, and Server Core (SERVERCORE) 7.10 through 7.30 allows remote authenticated users to bypass a security check and conduc…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2347
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305447
|
- |
|
odcms
|
odcms
|
Cross-site request forgery (CSRF) vulnerability in odCMS 1.06, and possibly earlier, allows remote attackers to hijack the authentication of administrators for requests that change the administrative…
|
CWE-352
Origin Validation Error
|
CVE-2010-2345
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305448
|
- |
|
odcms
|
odcms
|
Multiple cross-site scripting (XSS) vulnerabilities in odCMS 1.06, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the Page parameter to (1) _main/index.php, (…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2344
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305449
|
- |
|
dennisre
|
audio_converter
|
Stack-based buffer overflow in D.R. Software Audio Converter 8.1, 2007, and 8.05 allows remote attackers to execute arbitrary code via a crafted pls playlist file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2343
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305450
|
- |
|
dmxready
|
online_notebook_manager
|
SQL injection vulnerability in onlinenotebookmanager.asp in DMXReady Online Notebook Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2342
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
