|
304511
|
- |
|
hp
|
system_management_homepage
|
Open redirect vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2010-3283
|
2024-11-21 10:18 |
2010-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304512
|
- |
|
rsa
|
authentication_agent_for_web
|
Directory traversal vulnerability in RSA Authentication Agent 7.0 before P2 for Web allows remote attackers to read unspecified data via unknown vectors.
|
CWE-22
Path Traversal
|
CVE-2010-3261
|
2024-11-21 10:18 |
2010-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304513
|
- |
|
alcatel-lucent
|
omnivista_4760_server
|
Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote attackers to execute arbitrary code or cause a denial of service…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3281
|
2024-11-21 10:18 |
2010-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304514
|
- |
|
alcatel-lucent
|
ccagent
omnitouch_contact_center
|
The CCAgent option 9.0.8.4 and earlier in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition relies on client-side authorization checking, and uncon…
|
CWE-200
Information Exposure
|
CVE-2010-3280
|
2024-11-21 10:18 |
2010-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304515
|
- |
|
alcatel-lucent
|
ccagent
omnitouch_contact_center
|
The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, whi…
|
CWE-16
Configuration
|
CVE-2010-3279
|
2024-11-21 10:18 |
2010-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304516
|
- |
|
digitalworkroom
|
cms_digital_workroom
|
Cross-site scripting (XSS) vulnerability in netautor/napro4/home/login2.php in CMS Digital Workroom (formerly Netautor Professional) 5.5.0 allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3489
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304517
|
- |
|
houbysoft
|
quickshare
|
Directory traversal vulnerability in QuickShare 1.0 allows remote attackers to read arbitrary files via a ... (triple dot) in the URL.
|
CWE-22
Path Traversal
|
CVE-2010-3488
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304518
|
- |
|
yellosoft
|
pinky
|
Directory traversal vulnerability in YelloSoft Pinky 1.0 for Windows allows remote attackers to read arbitrary files via a %5C (encoded backslash) in the URL.
|
CWE-22
Path Traversal
|
CVE-2010-3487
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304519
|
- |
|
smartertools
|
smartermail
|
Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash), (2) %5C (encoded backslash), or (3) …
|
CWE-22
Path Traversal
|
CVE-2010-3486
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304520
|
- |
|
lightneasy
|
lightneasy
|
SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute arbitrary SQL commands via the userhandle cookie to LightNEasy.php, a different vector than CVE-2008-6…
|
CWE-89
SQL Injection
|
CVE-2010-3485
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
