|
306221
|
- |
|
malcom_box
|
lxr_cross_referencer
|
Cross-site scripting (XSS) vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results pag…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1625
|
2024-11-21 10:14 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306222
|
- |
|
malcom_box
|
lxr_cross_referencer
|
Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in th…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1448
|
2024-11-21 10:14 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306223
|
- |
|
apache
|
axis2
|
Apache Axis2 before 1.5.2, as used in IBM WebSphere Application Server (WAS) 7.0 through 7.0.0.12, IBM Feature Pack for Web Services 6.1.0.9 through 6.1.0.32, IBM Feature Pack for Web 2.0 1.0.1.0, Ap…
|
CWE-20
Improper Input Validation
|
CVE-2010-1632
|
2024-11-21 10:14 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306224
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the history.replaceState method in certain situations involving IFRAME elements, which allows remote attackers to…
|
CWE-200
Information Exposure
|
CVE-2010-1407
|
2024-11-21 10:14 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306225
|
- |
|
horde
|
horde
|
The IMP plugin in Horde allows remote attackers to bypass firewall restrictions and use Horde as a proxy to scan internal networks via a crafted request to an unspecified test script. NOTE: this is …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1638
|
2024-11-21 10:14 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306226
|
6.5 |
MEDIUM
Network
|
squirrelmail
fedoraproject
apple
redhat
|
squirrelmail
fedora
mac_os_x_server
mac_os_x
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
|
The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2010-1637
|
2024-11-21 10:14 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306227
|
- |
|
oracle
springsource
|
fusion_middleware
spring_framework
|
SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoa…
|
CWE-94
Code Injection
|
CVE-2010-1622
|
2024-11-21 10:14 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306228
|
- |
|
apple
|
itunes
iphone_os
|
Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, allows remote attackers to execute arbitrary code …
|
CWE-399
Resource Management Errors
|
CVE-2010-1387
|
2024-11-21 10:14 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306229
|
- |
|
samba
|
samba
|
The reply_sesssetup_and_X_spnego function in sesssetup.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to trigger an out-of-bounds read, and cause a denial of service (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1642
|
2024-11-21 10:14 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306230
|
- |
|
samba
|
samba
|
The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) via a Nego…
|
NVD-CWE-Other
|
CVE-2010-1635
|
2024-11-21 10:14 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
