Lucene search
K

6827 matches found

NVD
NVD
added 2010/04/20 3:30 p.m.22 views

CVE-2010-1165

Atlassian JIRA 3.12 through 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the 1 attachment aka attachments, 2 index aka indexing, or 3 backup path and then uploading a file, as exploited in the wild in April 2010...

9CVSS7.3AI score0.04436EPSS
Exploits0References8
Cvelist
Cvelist
added 2010/04/20 3:0 p.m.28 views

CVE-2010-1164

Multiple cross-site scripting XSS vulnerabilities in Atlassian JIRA 3.12 through 4.1 allow remote attackers to inject arbitrary web script or HTML via the 1 element or 2 defaultColor parameter to the Colour Picker page; the 3 formName parameter, 4 element parameter, or 5 full name field to the Us...

5.7AI score0.02235EPSS
Exploits0References9
Cvelist
Cvelist
added 2010/04/20 3:0 p.m.19 views

CVE-2010-1165

Atlassian JIRA 3.12 through 4.1 allows remote authenticated administrators to execute arbitrary code by modifying the 1 attachment aka attachments, 2 index aka indexing, or 3 backup path and then uploading a file, as exploited in the wild in April 2010...

7.3AI score0.04436EPSS
Exploits0References8
securityvulns
securityvulns
added 2010/04/19 12:0 a.m.42 views

RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities

RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities Vulnerable: v3.0.7.x Vendor: www.rj-itop.com Category: Input Validation Error Impact: SQL injection Details: ========= Multiple SQL Injection Vulnerabilities has been found in DRJ-iTop Network Vulnerability Scanne...

0.5AI score
Exploits0
ThreatPost
ThreatPost
added 2010/04/13 6:16 p.m.9 views

Microsoft Plugs Critical Drive-By Download Holes

Microsoft today released 11 security bulletins with fixes for a total of 25 security vulnerabilities, including several flaws that expose users to browse-and-you’re-hacked malicious drive-by download attacks. Two of the bulletins are rated “critical” for all versions of Microsoft’s flagship...

1.7AI score
Exploits0References7
Packet Storm
Packet Storm
added 2010/04/13 12:0 a.m.39 views

Worldviewer.com CMS SQL Injection

Exploit Title: Worldviewer.com CMS SQL Injection Vulnerability Date: 12-4-2010 Author: 41.w4r10r aka AN1L Software Link : Version: Web Application Tested on: Apcahe/Unix CVE : if exists Dork : inurl:"php/showContent.php?linkid=" Or inurl:"/php/showNews.php?newsid=" Code : This Is The CMS Created ...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2010/04/12 12:0 a.m.35 views

Worldviewer.com CMS - SQL Injection

Exploit Title: Worldviewer.com CMS SQL Injection Vulnerability Date: 12-4-2010 Author: 41.w4r10r aka AN1L Software Link : Version: Web Application Tested on: Apcahe/Unix CVE : if exists Dork : inurl:"php/showContent.php?linkid=" Or inurl:"/php/showNews.php?newsid=" Code : This Is The CMS Created ...

7AI score
Exploits0
Typo3
Typo3
added 2010/04/09 12:0 a.m.13 views

Vulnerability in TYPO3 Core

It has been discovered that TYPO3 Core is vulnerable to Remote Command Execution. Component Type: TYPO3 Core Affected Versions: 4.3.0, 4.3.1 and 4.3.2 + development releases of 4.4 branch Vulnerability Types: Remote Command Execution Overall Severity: Critical Release Date: April 9, 2010 Vulnerab...

7.5AI score
Exploits0Affected Software1
Circl
Circl
added 2010/04/09 12:0 a.m.12 views

CVE-2010-0886

creationtimestamp| type| source ---|---|--- 2010-04-09 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41700 2010-04-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12117 2010-04-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12122 2010-09-21...

10CVSS7.5AI score0.69949EPSS
Exploits7References5
Circl
Circl
added 2010/04/09 12:0 a.m.23 views

CVE-2010-1423

creationtimestamp| type| source ---|---|--- 2010-04-09 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41700 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/javawsarginjectaltjvm.rb 2025-02-06...

9.3CVSS5.5AI score0.5558EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2010/04/07 12:0 a.m.56 views

Oracle Java SE Multiple Vulnerabilities - Linux

Sun Java SE is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sun:jre"; ifdescription...

9.8CVSS8.5AI score0.96166EPSS
Exploits46References31
Check Point Advisories
Check Point Advisories
added 2010/03/11 12:0 a.m.6 views

GNOME Project libxslt Library RC4 Key String Buffer Overflow (CVE-2008-2935)

XSLT is an XML language to define transformation for XML. XSLT is designed for use as part of XSL, which is a stylesheet language for XML. In addition to XSLT, XSL includes an XML vocabulary for specifying formatting. There exists a heap based buffer overflow vulnerability in RC4 libxslt...

7.5CVSS7.9AI score0.12789EPSS
Exploits2
Prion
Prion
added 2010/03/10 10:30 p.m.21 views

Memory corruption

Use-after-free vulnerability in the Peer Objects component aka iepeers.dll in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, a...

9.3CVSS7.9AI score0.82172EPSS
Exploits15References13Affected Software3
ThreatPost
ThreatPost
added 2010/03/10 9:37 p.m.44 views

Recently Patched Adobe PDF Flaw Being 'Actively Exploited'

Malicious hackers have pounced on a newly patched Adobe PDF Reader vulnerability to plant Trojan downloaders on tardy Windows users. According to researchers in Microsoft’s malware protection center, the vulnerability CVE-2010-0188 was patched less than a month ago, proving that malicious hackers...

9.3CVSS1.2AI score0.88246EPSS
Exploits12References4
FreeBSD
FreeBSD
added 2010/03/07 12:0 a.m.23 views

spamass-milter -- remote command execution vulnerability

The spamassassin milter plugin contains a vulnerability that can allow remote attackers to execute commands on affected systems. The vulnerability can be exploited trough a special-crafted email header when the plugin was started with the '-x' expand flag...

9.3CVSS6.9AI score0.08578EPSS
Exploits1References2
securityvulns
securityvulns
added 2010/02/25 12:0 a.m.48 views

ESA-2010-003: EMC HomeBase Server Arbitrary File Upload Vulnerability

ESA-2010-003: EMC HomeBase Server Arbitrary File Upload Vulnerability Identifier: ESA-2010-003 Identifier: HB6042 CVE Identifier: CVE-2010-0620 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected products: EMC HomeBase Server version 6.2.x EMC HomeBase Server version 6.3....

9.3CVSS1AI score0.19478EPSS
Exploits5
securityvulns
securityvulns
added 2010/02/16 12:0 a.m.67 views

LDF (Default.asp) Sql Injection Vulnerability

Product : LDF vendor : www.ldf.22.cn Vulnerable Versions : All Default.asp Page has an issue on validating "Page" parameter , It could be exploited by attacker & attacker can inject arbitrary Sql Commands http://www.example.com/ldf path/default.asp?page=SQL COMMAND...

2.6AI score
Exploits0
OpenVAS
OpenVAS
added 2010/01/22 12:0 a.m.77 views

Microsoft Windows GP Trap Handler Privilege Escalation Vulnerability

Microsoft Windows operating system is prone to a privilege escalation vulnerability. This VT has been deprecated and replaced by the VT with the OID: 1.3.6.1.4.1.25623.1.0.900740. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and ar...

7.8CVSS7.7AI score0.29253EPSS
Exploits13References6
securityvulns
securityvulns
added 2010/01/17 12:0 a.m.40 views

US-CERT Technical Cyber Security Alert TA10-013A -- Adobe Reader and Acrobat Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA10-013A Adobe Reader and Acrobat Vulnerabilities Original release date: Last revised: -- Source: US-CERT Systems Affected Adobe Reader and Acrobat 9.2 and earlier 9.x versions Adobe Reader a...

0.7AI score
Exploits0
OpenVAS
OpenVAS
added 2010/01/16 12:0 a.m.36 views

Adobe Reader/Acrobat Multiple Vulnerabilities (Jan 2010) - Windows

Adobe Reader/Acrobat is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.4AI score0.83574EPSS
Exploits27References11
Rows per page
Query Builder