|
310961
|
- |
|
alcatel-lucent
|
omnivista_4760_server
|
Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote attackers to execute arbitrary code or cause a denial of service…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3281
|
2024-11-21 10:18 |
2010-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310962
|
- |
|
alcatel-lucent
|
ccagent
omnitouch_contact_center
|
The CCAgent option 9.0.8.4 and earlier in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition relies on client-side authorization checking, and uncon…
|
CWE-200
Information Exposure
|
CVE-2010-3280
|
2024-11-21 10:18 |
2010-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310963
|
- |
|
alcatel-lucent
|
ccagent
omnitouch_contact_center
|
The default configuration of the CCAgent option before 9.0.8.4 in the management server (aka TSA) component in Alcatel-Lucent OmniTouch Contact Center Standard Edition enables maintenance access, whi…
|
CWE-16
Configuration
|
CVE-2010-3279
|
2024-11-21 10:18 |
2010-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310964
|
- |
|
digitalworkroom
|
cms_digital_workroom
|
Cross-site scripting (XSS) vulnerability in netautor/napro4/home/login2.php in CMS Digital Workroom (formerly Netautor Professional) 5.5.0 allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3489
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310965
|
- |
|
houbysoft
|
quickshare
|
Directory traversal vulnerability in QuickShare 1.0 allows remote attackers to read arbitrary files via a ... (triple dot) in the URL.
|
CWE-22
Path Traversal
|
CVE-2010-3488
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310966
|
- |
|
yellosoft
|
pinky
|
Directory traversal vulnerability in YelloSoft Pinky 1.0 for Windows allows remote attackers to read arbitrary files via a %5C (encoded backslash) in the URL.
|
CWE-22
Path Traversal
|
CVE-2010-3487
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310967
|
- |
|
smartertools
|
smartermail
|
Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash), (2) %5C (encoded backslash), or (3) …
|
CWE-22
Path Traversal
|
CVE-2010-3486
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310968
|
- |
|
lightneasy
|
lightneasy
|
SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute arbitrary SQL commands via the userhandle cookie to LightNEasy.php, a different vector than CVE-2008-6…
|
CWE-89
SQL Injection
|
CVE-2010-3485
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310969
|
- |
|
lightneasy
|
lightneasy
|
SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute arbitrary SQL commands via the handle parameter to LightNEasy.php, a different vector than CVE-2008-65…
|
CWE-89
SQL Injection
|
CVE-2010-3484
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310970
|
- |
|
bouzouste
|
primitive_cms
|
cms_write.php in Primitive CMS 1.0.9 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request. NOTE: this vulnerability can be leverage…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3483
|
2024-11-21 10:18 |
2010-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
