|
305011
|
- |
|
ajsquare
|
aj_hyip
|
SQL injection vulnerability in welcome.php in AJ Square AJ HYIP PRIME allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2915
|
2024-11-21 10:17 |
2010-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305012
|
- |
|
nessus
|
web_server_plugin
|
Cross-site scripting (XSS) vulnerability in nessusd_www_server.nbin in the Nessus Web Server plugin 1.2.4 for Nessus allows remote attackers to inject arbitrary web script or HTML via unspecified vec…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2914
|
2024-11-21 10:17 |
2010-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305013
|
8.8 |
HIGH
Network
|
mozilla
suse
opensuse
|
firefox
seamonkey
thunderbird
linux_enterprise_desktop
opensuse
linux_enterprise_server
linux_enterprise_software_development_kit
|
Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute ar…
|
CWE-190
CWE-416
Integer Overflow or Wraparound
Use After Free
|
CVE-2010-2753
|
2024-11-21 10:17 |
2010-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305014
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attac…
|
CWE-189
Numeric Errors
|
CVE-2010-2752
|
2024-11-21 10:17 |
2010-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305015
|
- |
|
mozilla
|
firefox
seamonkey
|
The nsDocShell::OnRedirectStateChange function in docshell/base/nsDocShell.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to sp…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2751
|
2024-11-21 10:17 |
2010-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305016
|
- |
|
citibank
|
citi_mobile
|
The Citibank Citi Mobile app before 2.0.3 for iOS stores account data in a file, which allows local users to obtain sensitive information via vectors involving (1) the mobile device or (2) a synchron…
|
CWE-200
Information Exposure
|
CVE-2010-2913
|
2024-11-21 10:17 |
2010-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305017
|
- |
|
mozilla
|
firefox
|
layout/generic/nsObjectFrame.cpp in Mozilla Firefox 3.6.7 does not properly free memory in the parameter array of a plugin instance, which allows remote attackers to cause a denial of service (memory…
|
CWE-399
Resource Management Errors
|
CVE-2010-2755
|
2024-11-21 10:17 |
2010-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305018
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not properly suppres…
|
CWE-200
Information Exposure
|
CVE-2010-2754
|
2024-11-21 10:17 |
2010-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305019
|
- |
|
kayako
|
esupport
|
SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote attackers to execute arbitrary SQL commands via the _a parameter in a downloads action.
|
CWE-89
SQL Injection
|
CVE-2010-2912
|
2024-11-21 10:17 |
2010-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305020
|
- |
|
kayako
|
esupport
|
SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote attackers to execute arbitrary SQL commands via the newsid parameter in a viewnews action.
|
CWE-89
SQL Injection
|
CVE-2010-2911
|
2024-11-21 10:17 |
2010-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
