|
308811
|
- |
|
ibm
|
filenet_content_manager
|
IBM FileNet Content Manager (CM) 4.0.0, 4.0.1, 4.5.0, and 4.5.1 before FP4 does not properly manage the InheritParentPermissions setting during an upgrade from 3.x, which might allow attackers to byp…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2896
|
2024-11-21 10:17 |
2010-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308812
|
- |
|
hp
|
openview_network_node_manager
|
Buffer overflow in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long HTTP request to nnmrptconfig.exe.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2704
|
2024-11-21 10:17 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308813
|
- |
|
hp
|
openview_network_node_manager
|
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2703
|
2024-11-21 10:17 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308814
|
- |
|
boesch-it
|
simpnews
|
news.php in SimpNews 2.47.3 and earlier allows remote attackers to obtain sensitive information via an invalid lang parameter, which reveals the installation path in an error message.
|
CWE-200
Information Exposure
|
CVE-2010-2859
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308815
|
- |
|
boesch-it
|
simpnews
|
Multiple cross-site scripting (XSS) vulnerabilities in news.php in SimpNews 2.47.03 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) layout and (2) sortorder para…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2858
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308816
|
- |
|
danieljamesscott
|
com_music
|
Directory traversal vulnerability in the Music Manager component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the cid p…
|
CWE-22
Path Traversal
|
CVE-2010-2857
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308817
|
- |
|
oscss
|
oscss
|
Cross-site scripting (XSS) vulnerability in admin/currencies.php in osCSS 1.2.2, and probably earlier versions, allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2856
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308818
|
- |
|
jared_meeker
|
event_horizon
|
Multiple SQL injection vulnerabilities in modfile.php in Event Horizon (EVH) 1.1.10, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) YourEmail …
|
CWE-89
SQL Injection
|
CVE-2010-2855
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308819
|
- |
|
jared_meeker
|
event_horizon
|
Multiple cross-site scripting (XSS) vulnerabilities in modfile.php in Event Horizon (EVH) 1.1.10, when magic_quotes_gpc is disabled, allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2010-2854
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308820
|
- |
|
iscripts
|
visualcaster
|
SQL injection vulnerability in flashPlayer/playVideo.php in iScripts VisualCaster allows remote attackers to execute arbitrary SQL commands via the product_id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2853
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
