|
305871
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.33 and 7.0 before 7.0.0.11 allows remote attackers to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0778
|
2024-11-21 10:12 |
2010-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305872
|
- |
|
apple
|
cups
|
The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0542
|
2024-11-21 10:12 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305873
|
- |
|
muscle
|
pcsc-lite
|
Multiple buffer overflows in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 allow local users to gain privileges via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0407
|
2024-11-21 10:12 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305874
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Folder Manager in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows local users to delete arbitrary folders via a symlink attack in conjunction with an unmount operation on a crafted volume, rela…
|
CWE-59
Link Following
|
CVE-2010-0546
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305875
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Finder in DesktopServices in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, does not set the expected file ownerships during an "Apply to enclosed items" action, which allows local users to bypas…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0545
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305876
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
ImageIO in Apple Mac OS X 10.5.8, and 10.6 before 10.6.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0543
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305877
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers to inject arbitrary web script or HTML via a craf…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0541
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305878
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers …
|
CWE-352
Origin Validation Error
|
CVE-2010-0540
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305879
|
6.1 |
MEDIUM
Network
|
invisioncommunity
microsoft
|
invision_power_board
internet_explorer
|
Invision Power Board (aka IPB or IP.Board) 2.x through 3.0.4, when Internet Explorer 5 is used, allows XSS via a .txt attachment.
|
CWE-79
Cross-site Scripting
|
CVE-2009-5159
|
2024-11-21 10:11 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305880
|
8.8 |
HIGH
Network
|
linksys
|
spa2102_firmware
|
The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain acce…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2009-5140
|
2024-11-21 10:11 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
