|
303111
|
- |
|
matomo
|
matomo
|
Multiple cross-site scripting (XSS) vulnerabilities in Piwik before 1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-0004
|
2024-11-21 10:23 |
2011-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303112
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer on Windows XP allows remote attackers to trigger an incorrect GUI display and have unspecified other impact via vectors related to the DOM implementation, as demonstrated …
|
NVD-CWE-Other
|
CVE-2011-0347
|
2024-11-21 10:23 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303113
|
- |
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in the ReleaseInterface function in MSHTML.DLL in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code or cause a denial of service (…
|
CWE-399
Resource Management Errors
|
CVE-2011-0346
|
2024-11-21 10:23 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303114
|
7.5 |
HIGH
Network
|
libvncserver_project
fedoraproject
|
libvncserver
fedora
|
A NULL pointer dereference flaw was found in the way LibVNCServer before 0.9.9 handled certain ClientCutText message. A remote attacker could use this flaw to crash the VNC server by sending a specia…
|
CWE-476
NULL Pointer Dereference
|
CVE-2010-5304
|
2024-11-21 10:22 |
2020-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303115
|
7.5 |
HIGH
Network
|
edgewall
debian
|
trac
debian_linux
|
Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker to change the status and resolution of tickets without having proper permissio…
|
CWE-276
Incorrect Default Permissions
|
CVE-2010-5108
|
2024-11-21 10:22 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303116
|
- |
|
avast\!
|
avast\!_internet_security
|
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDIN…
|
CWE-189
Numeric Errors
|
CVE-2010-5075
|
2024-11-21 10:22 |
2014-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303117
|
- |
|
tremulous
openarena
ioquake3
|
tremulous
openarena
ioquake3_engine
|
server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service (network traffic amplification) via …
|
CWE-20
Improper Input Validation
|
CVE-2010-5077
|
2024-11-21 10:22 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303118
|
- |
|
freedesktop
|
poppler
|
DCTStream.cc in Poppler before 0.13.3 allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
|
CWE-20
Improper Input Validation
|
CVE-2010-5110
|
2024-11-21 10:22 |
2014-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303119
|
- |
|
binarymoon
|
timthumb
|
Cross-site scripting (XSS) vulnerability in the displayError function in timthumb.php in TimThumb before 1.15 (r85), as used in multiple products, allows remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5303
|
2024-11-21 10:22 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303120
|
- |
|
binarymoon
|
timthumb
|
Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb before 1.15 as of 20100908 (r88), as used in multiple products, allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5302
|
2024-11-21 10:22 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
