|
308681
|
- |
|
opera
|
opera_browser
|
Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict access to the full pathname of a file selected for upload, which allows remote attackers to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2661
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308682
|
- |
|
opera
|
opera_browser
|
Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict certain uses of homograph characters in domain names, which makes it easier for remote attac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2660
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308683
|
- |
|
opera
|
opera_browser
|
Opera before 10.50 on Windows, before 10.52 on Mac OS X, and before 10.60 on UNIX platforms makes widget properties accessible to third-party domains, which allows remote attackers to obtain potentia…
|
CWE-200
Information Exposure
|
CVE-2010-2659
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308684
|
- |
|
opera
|
opera_browser
|
Opera before 10.60 does not properly restrict certain interaction between plug-ins, file inputs, and the clipboard, which allows user-assisted remote attackers to trigger the uploading of arbitrary f…
|
CWE-20
Improper Input Validation
|
CVE-2010-2658
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308685
|
- |
|
opera
|
opera_browser
|
Opera before 10.60 on Windows and Mac OS X does not properly prevent certain double-click operations from running a program located on a web site, which allows user-assisted remote attackers to execu…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2657
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308686
|
- |
|
ibm
|
advanced_management_module
|
The IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2656
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308687
|
- |
|
ibm
|
advanced_management_module
|
Directory traversal vulnerability in private/file_management.php on the IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0…
|
CWE-22
Path Traversal
|
CVE-2010-2655
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308688
|
- |
|
ibm
|
advanced_management_module
|
Multiple cross-site scripting (XSS) vulnerabilities on the IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allow remot…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2654
|
2024-11-21 10:17 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308689
|
- |
|
libtiff
|
libtiff
|
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a den…
|
CWE-20
Improper Input Validation
|
CVE-2010-2631
|
2024-11-21 10:17 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308690
|
- |
|
libtiff
|
libtiff
|
The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to ca…
|
CWE-20
Improper Input Validation
|
CVE-2010-2630
|
2024-11-21 10:17 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
