|
306201
|
- |
|
pharscape
|
hsolink
|
hsolinkcontrol in hsolink 1.0.118 allows local users to gain privileges via shell metacharacters in command-line arguments, as demonstrated by the second argument in a down action.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1671
|
2024-11-21 10:14 |
2010-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306202
|
- |
|
gigabyte
|
dldrv2_activex_control
|
Array index error in the SetDLInfo method in the GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via the …
|
CWE-20
Improper Input Validation
|
CVE-2010-1518
|
2024-11-21 10:14 |
2010-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306203
|
- |
|
gigabyte
|
dldrv2_activex_control
|
The GIGABYTE Dldrv2 ActiveX control 1.4.206.11 allows remote attackers to (1) download arbitrary programs onto a client system, and execute these programs, via vectors involving the dl method; and (2…
|
CWE-20
Improper Input Validation
|
CVE-2010-1517
|
2024-11-21 10:14 |
2010-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306204
|
- |
|
apache
|
http_server
|
The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path.
|
NVD-CWE-Other
|
CVE-2010-1452
|
2024-11-21 10:14 |
2010-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306205
|
- |
|
cisco
|
internet_streamer
content_delivery_system
|
Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery System (CDS) 2.2.x, 2.3.x, 2.4.x, and 2.5.x before 2.5.7 allows remote attackers to read arbitrary file…
|
CWE-22
Path Traversal
|
CVE-2010-1577
|
2024-11-21 10:14 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306206
|
- |
|
cisco
|
ios
industrial_ethernet_3000
|
IOS 12.2(52)SE and 12.2(52)SE1 on Cisco Industrial Ethernet (IE) 3000 series switches has (1) a community name of public for RO access and (2) a community name of private for RW access, which makes i…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1574
|
2024-11-21 10:14 |
2010-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306207
|
- |
|
mahara
|
mahara
|
Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 has improper configuration options for authentication plugins associated with logins that use the single sign-on (SSO) functionality, …
|
CWE-287
Improper Authentication
|
CVE-2010-1670
|
2024-11-21 10:14 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306208
|
- |
|
mahara
|
mahara
|
SQL injection vulnerability in Mahara 1.1.x before 1.1.9 and 1.2.x before 1.2.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-1669
|
2024-11-21 10:14 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306209
|
- |
|
mahara
|
mahara
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 allow remote attackers to hijack the authentication of unspecified victi…
|
CWE-352
Origin Validation Error
|
CVE-2010-1668
|
2024-11-21 10:14 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306210
|
- |
|
mahara
|
mahara
|
Multiple cross-site scripting (XSS) vulnerabilities in Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 allow remote attackers to inject arbitrary web script or HTML via unspecified v…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1667
|
2024-11-21 10:14 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
