|
308961
|
- |
|
adobe
|
coldfusion
|
The authentication process in Adobe ColdFusion before 10 does not require knowledge of the cleartext password if the password hash is known, which makes it easier for context-dependent attackers to o…
|
CWE-255
Credentials Management
|
CVE-2010-5290
|
2024-11-21 10:22 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308962
|
- |
|
incredimail
|
incredimail
|
Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2.0 allows remote attackers to cause a denial of service (application crash) or …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5289
|
2024-11-21 10:22 |
2013-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308963
|
- |
|
indra
|
editran_communications_platform
|
Buffer overflow in the lsConnectionCached function in editcp in EDItran Communications Platform 4.1 R7 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrar…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5288
|
2024-11-21 10:22 |
2013-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308964
|
- |
|
openbsd
|
openssh
|
The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial…
|
NVD-CWE-Other
|
CVE-2010-5107
|
2024-11-21 10:22 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308965
|
- |
|
cstech
|
webconductor
|
SQL injection vulnerability in default.php in Cornerstone Technologies webConductor allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5287
|
2024-11-21 10:22 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308966
|
- |
|
joobi
|
com_jstore
|
Directory traversal vulnerability in Jstore (com_jstore) component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the con…
|
CWE-22
Path Traversal
|
CVE-2010-5286
|
2024-11-21 10:22 |
2012-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308967
|
- |
|
o-dyn
|
collabtive
|
Cross-site request forgery (CSRF) vulnerability in admin.php in Collabtive 0.6.5 allows remote attackers to hijack the authentication of administrators for requests that add administrative users via …
|
CWE-352
Origin Validation Error
|
CVE-2010-5285
|
2024-11-21 10:22 |
2012-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308968
|
- |
|
o-dyn
|
collabtive
|
Multiple cross-site scripting (XSS) vulnerabilities in Collabtive 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the (1) User parameter in the edit user profile feature to ma…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5284
|
2024-11-21 10:22 |
2012-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308969
|
- |
|
opentext
|
livelink_ecm
|
Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows remote attackers to hijack the authentication of administrators for requests that change folder an…
|
CWE-352
Origin Validation Error
|
CVE-2010-5283
|
2024-11-21 10:22 |
2012-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308970
|
- |
|
opentext
|
livelink_ecm
|
Multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM (formerly Livelink ECM) 9.7.1 allow remote attackers to inject arbitrary web script or HTML via the (1) viewType and (2) sort param…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5282
|
2024-11-21 10:22 |
2012-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
