|
303461
|
5.5 |
MEDIUM
Local
|
oracle
fedoraproject
|
mysql-gui-tools
fedora
|
MySQL-GUI-tools (mysql-administrator) leaks passwords into process list after with launch of mysql text console
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2010-4178
|
2024-11-21 10:20 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303462
|
5.9 |
MEDIUM
Network
|
mercurial
|
mercurial
|
Mercurial before 1.6.4 fails to verify the Common Name field of SSL certificates which allows remote attackers who acquire a certificate signed by a Certificate Authority to perform a man-in-the-midd…
|
CWE-295
Improper Certificate Validation
|
CVE-2010-4237
|
2024-11-21 10:20 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303463
|
6.1 |
MEDIUM
Network
|
translatehouse
|
pootle
|
pootle 2.0.5 has XSS via 'match_names' parameter
|
CWE-79
Cross-site Scripting
|
CVE-2010-4245
|
2024-11-21 10:20 |
2019-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303464
|
8.8 |
HIGH
Network
|
tiki
|
tikiwiki_cms\/groupware
|
Tiki Wiki CMS Groupware 5.2 has CSRF
|
CWE-352
Origin Validation Error
|
CVE-2010-4241
|
2024-11-21 10:20 |
2019-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303465
|
6.1 |
MEDIUM
Network
|
tiki
|
tikiwiki_cms\/groupware
|
Tiki Wiki CMS Groupware 5.2 has XSS
|
CWE-79
Cross-site Scripting
|
CVE-2010-4240
|
2024-11-21 10:20 |
2019-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303466
|
9.8 |
CRITICAL
Network
|
tiki
|
tikiwiki_cms\/groupware
|
Tiki Wiki CMS Groupware 5.2 has Local File Inclusion
|
CWE-20
Improper Input Validation
|
CVE-2010-4239
|
2024-11-21 10:20 |
2019-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303467
|
8.8 |
HIGH
Network
|
novell
|
iprint
|
Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client before 5.42 for Windows XP/Vista/Win7 to execute code by overflowing the "name" parameter.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4314
|
2024-11-21 10:20 |
2017-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303468
|
- |
|
opensuse
gnu
|
opensuse
cpio
|
cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive.
|
CWE-59
Link Following
|
CVE-2010-4226
|
2024-11-21 10:20 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303469
|
- |
|
linux
|
linux_kernel
|
Memory leak in the inotify_init1 function in fs/notify/inotify/inotify_user.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory consumption) via vectors involv…
|
CWE-399
Resource Management Errors
|
CVE-2010-4250
|
2024-11-21 10:20 |
2012-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303470
|
- |
|
apache
|
libcloud
|
libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allows remote attackers to spoof certificates and bypass intended access restrictions via a man-in-the-middle (MITM…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4340
|
2024-11-21 10:20 |
2011-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
