|
309201
|
- |
|
splunk
|
splunk
|
Cross-site scripting (XSS) vulnerability in Splunk 4.0 through 4.1.2, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer in a "404 Not…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2429
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309202
|
- |
|
wftpserver
|
wing_ftp_server
|
Cross-site scripting (XSS) vulnerability in admin_loginok.html in the Administrator web interface in Wing FTP Server for Windows 3.5.0 and earlier allows remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2428
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309203
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read arbitrary files, determ…
|
CWE-22
Path Traversal
|
CVE-2010-2426
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309204
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read or delete arbitrary fil…
|
CWE-22
Path Traversal
|
CVE-2010-2425
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309205
|
- |
|
plone
|
plone
|
Cross-site scripting (XSS) vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 before hotfix 20100612 allows remote attackers to inject arbitrary web script or HTML via the safe_html transfo…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2422
|
2024-11-21 10:16 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309206
|
- |
|
apple
|
cups
|
The cupsDoAuthentication function in auth.c in the client in CUPS before 1.4.4, when HAVE_GSSAPI is omitted, does not properly handle a demand for authorization, which allows remote CUPS servers to c…
|
CWE-399
Resource Management Errors
|
CVE-2010-2432
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309207
|
- |
|
apple
|
cups
|
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cach…
|
CWE-59
Link Following
|
CVE-2010-2431
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309208
|
- |
|
opera
|
opera_browser
|
Multiple unspecified vulnerabilities in Opera before 10.54 have unknown impact and attack vectors related to (1) "extremely severe," (2) "highly severe," (3) "moderately severe," and (4) "less severe…
|
NVD-CWE-noinfo
|
CVE-2010-2421
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309209
|
- |
|
fenrir-inc
|
activegeckobrowser
|
Multiple unspecified vulnerabilities in Fenrir Inc. ActiveGeckoBrowser 1.0.0 and 1.0.5 alpha, a module for the Sleipnir web browser, allow remote attackers to cause a denial of service (crash) and po…
|
NVD-CWE-noinfo
|
CVE-2010-2420
|
2024-11-21 10:16 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309210
|
- |
|
activewebsoftwares
|
ewebquiz
|
SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote attackers to execute arbitrary SQL commands via the QuizType parameter, a different vector than CVE-2007…
|
CWE-89
SQL Injection
|
CVE-2010-2359
|
2024-11-21 10:16 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
