|
305541
|
- |
|
vunet
|
vu_web_visitor_analyst
|
Multiple SQL injection vulnerabilities in redir.asp in VU Web Visitor Analyst allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter. NOTE: some of t…
|
CWE-89
SQL Injection
|
CVE-2010-2338
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305542
|
- |
|
yamamah
|
yamamah
|
index.php in Yamamah Photo Gallery 1.00 allows remote attackers to obtain the source code of executable files within the web document root via the download parameter.
|
CWE-200
Information Exposure
|
CVE-2010-2336
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305543
|
- |
|
yamamah
|
yamamah
|
SQL injection vulnerability in index.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to execute arbitrary SQL commands via the news parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2335
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305544
|
- |
|
yamamah
|
yamamah
|
Directory traversal vulnerability in themes/default/download.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to read arbitrary files via a .. (dot dot) in t…
|
CWE-22
Path Traversal
|
CVE-2010-2334
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305545
|
- |
|
litespeedtech
|
litespeed_web_server
|
LiteSpeed Technologies LiteSpeed Web Server 4.0.x before 4.0.15 allows remote attackers to read the source code of scripts via an HTTP request with a null byte followed by a .txt file extension.
|
CWE-200
Information Exposure
|
CVE-2010-2333
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305546
|
- |
|
impactfinancials
|
impact_pdf_reader
|
Impact Financials, Inc. Impact PDF Reader 2.0, 1.2, and other versions for iPhone and iPod touch allows remote attackers to cause a denial of service (server crash) via a "..." body in a POST request.
|
CWE-20
Improper Input Validation
|
CVE-2010-2332
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305547
|
- |
|
upredsun
|
isharer_file_sharing_wizard
|
Stack-based buffer overflow in iSharer File Sharing Wizard 1.5.0 allows remote attackers to execute arbitrary code via a long HEAD request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2331
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305548
|
- |
|
upredsun
|
isharer_file_sharing_wizard
|
Stack-based buffer overflow in iSharer File Sharing Wizard 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Content-Length header.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2330
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305549
|
- |
|
rosoftengineering
|
rosoft_audio_converter
|
Buffer overflow in Rosoft Audio Converter 4.4.4 allows remote attackers to execute arbitrary code via a long playlist entry in a .m3u file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2329
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305550
|
- |
|
ibm
|
websphere_application_server
|
The HTTP Channel in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11 allows remote attackers to cause a denial of service (NullPointerException) via a large amount of chunked data that uses…
|
NVD-CWE-Other
|
CVE-2010-2328
|
2024-11-21 10:16 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
