|
309531
|
- |
|
ordasoft
|
com_booklibrary
|
Multiple SQL injection vulnerabilities in the BookLibrary Basic (com_booklibrary) component 1.5.3 before 1.5.3_2010_06_20 for Joomla! allow remote attackers to execute arbitrary SQL commands via the …
|
CWE-89
SQL Injection
|
CVE-2010-1522
|
2024-11-21 10:14 |
2010-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309532
|
- |
|
taskfreak
|
taskfreak\!
|
SQL injection vulnerability in include/classes/tzn_user.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to execute arbitrary SQL commands via the password parameter to logi…
|
CWE-89
SQL Injection
|
CVE-2010-1521
|
2024-11-21 10:14 |
2010-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309533
|
- |
|
taskfreak
|
taskfreak\!
|
Cross-site scripting (XSS) vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-1520
|
2024-11-21 10:14 |
2010-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309534
|
- |
|
adobe
|
acrobat
acrobat_reader
|
Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1295
|
2024-11-21 10:14 |
2010-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309535
|
- |
|
adobe
|
acrobat
acrobat_reader
|
Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow attackers to execute arbitrary code via unspecified manipulations involving the newclass (0x58) operator…
|
CWE-20
CWE-399
Improper Input Validation
Resource Management Errors
|
CVE-2010-1285
|
2024-11-21 10:14 |
2010-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309536
|
- |
|
malcom_box
|
lxr_cross_referencer
|
Cross-site scripting (XSS) vulnerability in LXR Cross Referencer before 0.9.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the search body and the results pag…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1625
|
2024-11-21 10:14 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309537
|
- |
|
malcom_box
|
lxr_cross_referencer
|
Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in th…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1448
|
2024-11-21 10:14 |
2010-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309538
|
- |
|
apache
|
axis2
|
Apache Axis2 before 1.5.2, as used in IBM WebSphere Application Server (WAS) 7.0 through 7.0.0.12, IBM Feature Pack for Web Services 6.1.0.9 through 6.1.0.32, IBM Feature Pack for Web 2.0 1.0.1.0, Ap…
|
CWE-20
Improper Input Validation
|
CVE-2010-1632
|
2024-11-21 10:14 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309539
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the history.replaceState method in certain situations involving IFRAME elements, which allows remote attackers to…
|
CWE-200
Information Exposure
|
CVE-2010-1407
|
2024-11-21 10:14 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309540
|
- |
|
horde
|
horde
|
The IMP plugin in Horde allows remote attackers to bypass firewall restrictions and use Horde as a proxy to scan internal networks via a crafted request to an unspecified test script. NOTE: this is …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1638
|
2024-11-21 10:14 |
2010-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
