| Page(s) : 1 ... 333 334 335 336 337 338 339 340 341 342 [343] 344 345 346 347 348 349 350 351 352 353 ... | Result(s) : 9851 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2010-08-19 | CVE-2010-2242 | cve | Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users to bypass intended access restrictions ... |
| 2.1 | 2010-08-17 | CVE-2010-2241 | cve | The (1) setup-ds.pl and (2) setup-ds-admin.pl setup scripts for Red Hat Directory Server 8 before 8.2 use world-readable permissions when creating cache files, which allows loca... |
| 2.1 | 2010-08-16 | CVE-2009-4269 | cve | The password hash generation algorithm in the BUILTIN authentication functionality for Apache Derby before 10.6.1.0 performs a transformation that reduces the size of the set of... |
| 2.6 | 2010-08-16 | CVE-2010-3022 | cve | Cross-site scripting (XSS) vulnerability in the Performance logging module in the Devel module 5.x before 5.x-1.3 and 6.x before 6.x-1.21 for Drupal allows remote authenticated ... |
| 3.6 | 2010-08-16 | CVE-2010-3028 | cve | The Aardvertiser component before 2.2.1 for Joomla! uses insecure permissions (777) in unspecified folders, which allows local users to modify, create, or delete certain files. |
| 2.1 | 2010-08-10 | CVE-2010-2975 | cve | Cisco Unified Wireless Network (UWN) Solution 7.x through 7.0.98.0 does not properly handle multiple SSH sessions, which allows physically proximate attackers to read a password... |
| 3.5 | 2010-08-10 | CVE-2010-2474 | cve | JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2 does not properly consider the security domain with which a service is secured, ... |
| 2.1 | 2010-08-10 | CVE-2010-2574 | cve | Cross-site scripting (XSS) vulnerability in manage_proj_cat_add.php in MantisBT 1.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the n... |
| 3.6 | 2010-08-10 | RHSA-2010:0616 | RedHat | dbus-glib security update |
| 2.6 | 2010-08-05 | CVE-2010-2796 | cve | Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when proxy mode is enabled, allows remote attackers to inject arbitrary web script or HTML via a callback URL. |
| 2.1 | 2010-08-02 | CVE-2010-2539 | cve | Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to cause a denial of service via vectors inv... |
| 2.1 | 2010-07-30 | CVE-2010-2913 | cve | The Citibank Citi Mobile app before 2.0.3 for iOS stores account data in a file, which allows local users to obtain sensitive information via vectors involving (1) the mobile de... |
| 2.6 | 2010-07-30 | CVE-2010-1796 | cve | The AutoFill feature in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to obtain sensitive Addre... |
| 2.6 | 2010-07-30 | CVE-2010-2751 | cve | The nsDocShell::OnRedirectStateChange function in docshell/base/nsDocShell.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows ... |
| 2.6 | 2010-07-28 | CVE-2010-0213 | cve | BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor that is configured statically or via DNSSEC Lookaside Validation (DLV), allows remote attackers to... |
| 3.5 | 2010-07-28 | CVE-2009-4963 | cve | Cross-site scripting (XSS) vulnerability in the Commerce extension before 0.9.9 for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecifie... |
| 2.6 | 2010-07-24 | CVE-2010-2852 | cve | Cross-site scripting (XSS) vulnerability in modules/headlines/magpierss/scripts/magpie_debug.php in RunCms 2.1, when the Headlines module is enabled, allows remote attackers to ... |
| 2.6 | 2010-07-24 | CVE-2010-2854 | cve | Multiple cross-site scripting (XSS) vulnerabilities in modfile.php in Event Horizon (EVH) 1.1.10, when magic_quotes_gpc is disabled, allow remote attackers to inject arbitrary w... |
| 3.3 | 2010-07-22 | CVE-2010-2056 | cve | GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. |
| 3.6 | 2010-07-15 | CVE-2010-1967 | cve | Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors. |
| Page(s) : 1 ... 333 334 335 336 337 338 339 340 341 342 [343] 344 345 346 347 348 349 350 351 352 353 ... | Result(s) : 9851 |
