|
349151
|
- |
|
supportpro
|
supportdesk
|
Cross-site scripting (XSS) vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4861
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349152
|
- |
|
hitronsoft
|
answer_me
|
Cross-site scripting (XSS) vulnerability in Hitron Soft Answer Me 1.0 allows remote attackers to inject arbitrary web script or HTML via the q_id parameter to the answers script (aka answers.php). N…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4868
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349153
|
- |
|
hitronsoft
|
nasim_guest_book
|
Cross-site scripting (XSS) vulnerability in index.php in Nasim Guest Book 1.2 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4869
|
2010-05-11 21:02 |
2010-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349154
|
- |
|
openttd
|
openttd
|
OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0401
|
2010-05-11 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349155
|
- |
|
openttd
|
openttd
|
OpenTTD before 1.0.1 allows remote attackers to cause a denial of service (file-descriptor exhaustion and daemon crash) by performing incomplete downloads of the map.
|
CWE-399
Resource Management Errors
|
CVE-2010-0406
|
2010-05-11 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349156
|
- |
|
adobe
|
photoshop_cs4
|
Multiple unspecified vulnerabilities in Adobe Photoshop CS4 11.x before 11.0.1 allow user-assisted remote attackers to execute arbitrary code via a crafted TIFF file.
|
CWE-94
Code Injection
|
CVE-2010-1279
|
2010-05-11 13:00 |
2010-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349157
|
- |
|
mytty
|
webapplication_finger_printer
|
Web Application Finger Printer (WAFP) 0.01-26c3 uses fixed pathnames under /tmp for temporary files and directories, which (1) allows local users to cause a denial of service (application outage) by …
|
NVD-CWE-Other
|
CVE-2010-1438
|
2010-05-11 13:00 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349158
|
- |
|
zikula
|
zikula_application_framework
|
Cross-site request forgery (CSRF) vulnerability in the users module in Zikula Application Framework before 1.2.3 allows remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2010-1732
|
2010-05-11 13:00 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349159
|
- |
|
transmissionbt
|
transmission
|
Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service (crash) or possibly execute a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1853
|
2010-05-11 13:00 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349160
|
- |
|
php
|
php
|
The (1) sqlite_single_query and (2) sqlite_array_query functions in ext/sqlite/sqlite.c in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to execute arbitrary code by …
|
CWE-94
Code Injection
|
CVE-2010-1868
|
2010-05-11 13:00 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
