|
305741
|
- |
|
zabbix
|
zabbix
|
Multiple cross-site scripting (XSS) vulnerabilities in the formatQuery function in frontends/php/include/classes/class.curl.php in Zabbix before 1.8.3rc1 allow remote attackers to inject arbitrary we…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2790
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305742
|
- |
|
barnowl
|
barnowl
|
BarnOwl before 1.6.2 does not check the return code of calls to the (1) ZPending and (2) ZReceiveNotice functions in libzephyr, which allows remote attackers to cause a denial of service (crash) and …
|
CWE-20
Improper Input Validation
|
CVE-2010-2725
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305743
|
- |
|
raphael_assenat
|
libmikmod
|
loaders/load_it.c in libmikmod, possibly 3.1.12, does not properly account for the larger size of name##env relative to name##tick and name##node, which allows remote attackers to trigger a buffer ov…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2971
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305744
|
- |
|
moinmo
|
moinmoin
|
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.9.x before 1.9.3 allow remote attackers to inject arbitrary web script or HTML via crafted content, related to (1) action/SlideShow.p…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2970
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305745
|
- |
|
moinmo
|
moinmoin
|
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, and 1.9.x before 1.9.3, allow remote attackers to inject arbitrary web script or HTML via crafted content, related t…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2969
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305746
|
- |
|
windriver
|
vxworks
|
The FTP daemon in Wind River VxWorks does not close the TCP connection after a number of failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2968
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305747
|
- |
|
windriver
|
vxworks
|
The loginDefaultEncrypt algorithm in loginLib in Wind River VxWorks before 6.9 does not properly support a large set of distinct possible passwords, which makes it easier for remote attackers to obta…
|
CWE-310
Cryptographic Issues
|
CVE-2010-2967
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305748
|
- |
|
windriver
|
vxworks
|
The INCLUDE_SECURITY functionality in Wind River VxWorks 6.x, 5.x, and earlier uses the LOGIN_USER_NAME and LOGIN_USER_PASSWORD (aka LOGIN_PASSWORD) parameters to create hardcoded credentials, which …
|
CWE-255
Credentials Management
|
CVE-2010-2966
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305749
|
- |
|
rockwellautomation
windriver
|
1756-enbt\/a_firmware
vxworks
|
The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote a…
|
CWE-863
Incorrect Authorization
|
CVE-2010-2965
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305750
|
- |
|
emc
|
celerra_network_attached_storage
|
The EMC Celerra Network Attached Storage (NAS) appliance accepts external network traffic to IP addresses intended for an intranet network within the appliance, which allows remote attackers to read,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2860
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
