| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2010-5000 | SQL injection vulnerability in login/login_index.php in MCLogin System 1.1 and 1.2 allows remote att... | E | |
| CVE-2010-5001 | SQL injection vulnerability in view.php in esoftpro Online Contact Manager 3.0 allows remote attacke... | E | |
| CVE-2010-5002 | Cross-site scripting (XSS) vulnerability in modules/slideshowmodule/slideshow.js.php in Exponent CMS... | | |
| CVE-2010-5003 | SQL injection vulnerability in the AutarTimonial (com_autartimonial) component 1.0.8 for Joomla! all... | E | |
| CVE-2010-5004 | SQL injection vulnerability in searchvote.php in 2daybiz Polls (aka Advanced Poll) Script allows rem... | E | |
| CVE-2010-5005 | Cross-site scripting (XSS) vulnerability in members/profileCommentsResponse.php in Rayzz Photoz allo... | | |
| CVE-2010-5006 | SQL injection vulnerability in googlemap/index.php in EMO Realty Manager allows remote attackers to ... | E | |
| CVE-2010-5007 | Cross-site scripting (XSS) vulnerability in pages/match_report.php in UTStats Beta 4 and earlier all... | E | |
| CVE-2010-5008 | SQL injection vulnerability in pages/contact_list_mail_form.asp in BrightSuite Groupware 5.4 allows ... | E | |
| CVE-2010-5009 | SQL injection vulnerability in index.php in UTStats Beta 4 and earlier allows remote attackers to ex... | E | |
| CVE-2010-5010 | Cross-site scripting (XSS) vulnerability in schoolmv2/html/studentmain.php in SchoolMation 2.3 allow... | E | |
| CVE-2010-5011 | SQL injection vulnerability in schoolmv2/html/studentmain.php in SchoolMation 2.3 allows remote atta... | E | |
| CVE-2010-5012 | SQL injection vulnerability in new.php in DaLogin 2.2 and 2.2.5 allows remote attackers to execute a... | E | |
| CVE-2010-5013 | SQL injection vulnerability in listing_detail.asp in Mckenzie Creations Virtual Real Estate Manager ... | E | |
| CVE-2010-5014 | SQL injection vulnerability in standings.php in Elite Gaming Ladders 3.5 allows remote attackers to ... | E | |
| CVE-2010-5015 | SQL injection vulnerability in view_photo.php in 2daybiz Network Community Script allows remote atta... | E | |
| CVE-2010-5016 | SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote att... | E | |
| CVE-2010-5017 | SQL injection vulnerability in stats.php in Elite Gaming Ladders 3.0 allows remote attackers to exec... | E | |
| CVE-2010-5018 | Cross-site scripting (XSS) vulnerability in products/classified/headersearch.php in 2daybiz Online C... | E | |
| CVE-2010-5019 | SQL injection vulnerability in view_photo.php in 2daybiz Online Classified Script allows remote atta... | E | |
| CVE-2010-5020 | SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to ex... | E | |
| CVE-2010-5021 | SQL injection vulnerability in view_group.asp in Digital Interchange Document Library 5.8.5 allows r... | E | |
| CVE-2010-5022 | SQL injection vulnerability in the JExtensions JE Story Submit (com_jesubmit) component 1.4 for Joom... | E | |
| CVE-2010-5023 | SQL injection vulnerability in index.asp in Digital Interchange Calendar 5.8.5 allows remote attacke... | E | |
| CVE-2010-5024 | SQL injection vulnerability in manage/add_user.php in CuteSITE CMS 1.2.3 and 1.5.0 allows remote aut... | E | |
| CVE-2010-5025 | Cross-site scripting (XSS) vulnerability in manage/main.php in CuteSITE CMS 1.2.3 and 1.5.0 allows r... | E | |
| CVE-2010-5026 | SQL injection vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows r... | E | |
| CVE-2010-5027 | Cross-site scripting (XSS) vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2... | E | |
| CVE-2010-5028 | SQL injection vulnerability in the JExtensions JE Job (com_jejob) component 1.0 for Joomla! allows r... | E | |
| CVE-2010-5029 | SQL injection vulnerability in index.php in Ecomat CMS 5.0 allows remote attackers to execute arbitr... | E | |
| CVE-2010-5030 | Cross-site scripting (XSS) vulnerability in index.php in Ecomat CMS 5.0 allows remote attackers to i... | E | |
| CVE-2010-5031 | Cross-site scripting (XSS) vulnerability in index.php in fileNice 1.1 allows remote attackers to inj... | E | |
| CVE-2010-5032 | SQL injection vulnerability in the BF Quiz (com_bfquiztrial) component before 1.3.1 for Joomla! allo... | E S | |
| CVE-2010-5033 | SQL injection vulnerability in ProductList.cfm in Fusebox 5.5.1 allows remote attackers to execute a... | E | |
| CVE-2010-5034 | SQL injection vulnerability in viewhistorydetail.php in iScripts EasyBiller 1.1 allows remote attack... | E | |
| CVE-2010-5035 | Cross-site scripting (XSS) vulnerability in search.php in iScripts eSwap 2.0 allows remote attackers... | E | |
| CVE-2010-5036 | SQL injection vulnerability in addsale.php in iScripts eSwap 2.0 allows remote attackers to execute ... | E | |
| CVE-2010-5037 | SQL injection vulnerability in article.php in SenseSites CommonSense CMS allows remote attackers to ... | E | |
| CVE-2010-5038 | PHP remote file inclusion vulnerability in contact/contact.php in Groone's Simple Contact Form allow... | E | |
| CVE-2010-5039 | SQL injection vulnerability in control/admin_login.php in ScriptsFeed Recipes Listing Portal 1.0 all... | E | |
| CVE-2010-5040 | PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery plugin 0... | E | |
| CVE-2010-5041 | SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote att... | E | |
| CVE-2010-5042 | Cross-site scripting (XSS) vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for... | E | |
| CVE-2010-5043 | SQL injection vulnerability in the DJ-ArtGallery (com_djartgallery) component 0.9.1 for Joomla! allo... | E | |
| CVE-2010-5044 | SQL injection vulnerability in models/log.php in the Search Log (com_searchlog) component 3.1.0 for ... | E | |
| CVE-2010-5045 | Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote attac... | E | |
| CVE-2010-5046 | Cross-site scripting (XSS) vulnerability in admin.php in ecoCMS allows remote attackers to inject ar... | | |
| CVE-2010-5047 | SQL injection vulnerability in page.php in V-EVA Press Release Script allows remote attackers to exe... | | |
| CVE-2010-5048 | Cross-site scripting (XSS) vulnerability in admin.jcomments.php in the JoomlaTune JComments (com_jco... | E S | |
| CVE-2010-5049 | SQL injection vulnerability in events.php in Zabbix 1.8.1 and earlier allows remote attackers to exe... | | |
| CVE-2010-5050 | Cross-site scripting (XSS) vulnerability in jsp/admin/tools/remote_share.jsp in ManageEngine ADManag... | | |
| CVE-2010-5051 | Cross-site scripting (XSS) vulnerability in admin/core/admin_func.php in razorCMS 1.0 stable allows ... | E S | |
| CVE-2010-5052 | Cross-site scripting (XSS) vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote... | E | |
| CVE-2010-5053 | SQL injection vulnerability in the XOBBIX (com_xobbix) component 1.0.1 for Joomla! allows remote att... | E | |
| CVE-2010-5054 | Cross-site scripting (XSS) vulnerability in Special:Login in JAMWiki before 0.8.4 allows remote atta... | S | |
| CVE-2010-5055 | SQL injection vulnerability in index.php in Almnzm 2.1 allows remote attackers to execute arbitrary ... | E | |
| CVE-2010-5056 | SQL injection vulnerability in the GBU Facebook (com_gbufacebook) component 1.0.5 for Joomla! allows... | E | |
| CVE-2010-5057 | SQL injection vulnerability in detResolucion.php in CMS Ariadna 1.1 allows remote attackers to execu... | E | |
| CVE-2010-5058 | SQL injection vulnerability in detResolucion.php in CMS Ariadna 1.1 allows remote attackers to execu... | | |
| CVE-2010-5059 | SQL injection vulnerability in index.php in CMScout 2.0.8 allows remote attackers to execute arbitra... | E | |
| CVE-2010-5060 | SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arb... | E | |
| CVE-2010-5061 | SQL injection vulnerability in index.php in RSStatic allows remote attackers to execute arbitrary SQ... | | |
| CVE-2010-5062 | SQL injection vulnerability in search.php in MH Products kleinanzeigenmarkt allows remote attackers ... | E | |
| CVE-2010-5063 | SQL injection vulnerability in article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attacker... | E | |
| CVE-2010-5064 | Multiple cross-site scripting (XSS) vulnerabilities in Virtual War (aka VWar) 1.6.1 R2 allow remote ... | E | |
| CVE-2010-5065 | popup.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to bypass intended member restr... | E | |
| CVE-2010-5066 | The createRandomPassword function in includes/functions_common.php in Virtual War (aka VWar) 1.6.1 R... | E | |
| CVE-2010-5067 | Virtual War (aka VWar) 1.6.1 R2 uses static session cookies that depend only on a user's password, w... | E | |
| CVE-2010-5068 | The Cascading Style Sheets (CSS) implementation in Opera 10.5 does not properly handle the :visited ... | E | |
| CVE-2010-5069 | The Cascading Style Sheets (CSS) implementation in Google Chrome 4 does not properly handle the :vis... | E | |
| CVE-2010-5070 | The JavaScript implementation in Apple Safari 4 does not properly restrict the set of values contain... | E | |
| CVE-2010-5071 | The JavaScript implementation in Microsoft Internet Explorer 8.0 and earlier does not properly restr... | E | |
| CVE-2010-5072 | The JavaScript implementation in Opera 10.5 does not properly restrict the set of values contained i... | E | |
| CVE-2010-5073 | The JavaScript implementation in Google Chrome 4 does not properly restrict the set of values contai... | E | |
| CVE-2010-5074 | The layout engine in Mozilla Firefox before 4.0, Thunderbird before 3.3, and SeaMonkey before 2.1 ex... | | |
| CVE-2010-5075 | Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local us... | E | |
| CVE-2010-5076 | QSslSocket in Qt before 4.7.0-rc1 recognizes a wildcard IP address in the subject's Common Name fiel... | E S | |
| CVE-2010-5077 | server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other ... | | |
| CVE-2010-5078 | SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 stores sensitive information under the web r... | | |
| CVE-2010-5079 | SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 uses weak entropy when generating tokens for... | S | |
| CVE-2010-5080 | The Security/changepassword URL action in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 pa... | | |
| CVE-2010-5081 | Stack-based buffer overflow in Mini-Stream RM-MP3 Converter 3.1.2.1 allows remote attackers to execu... | E | |
| CVE-2010-5082 | Untrusted search path vulnerability in colorcpl.exe 6.0.6000.16386 in the Color Control Panel in Mic... | | |
| CVE-2010-5083 | SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote attackers to exec... | E | |
| CVE-2010-5084 | The cross-site request forgery (CSRF) protection mechanism in e107 before 0.7.23 uses a predictable ... | | |
| CVE-2010-5085 | Multiple cross-site request forgery (CSRF) vulnerabilities in admin/update_user in Hulihan Amethyst ... | E | |
| CVE-2010-5086 | Directory traversal vulnerability in wiki/rankings.php in Bitweaver 2.7 and 2.8.1 allows remote atta... | E | |
| CVE-2010-5087 | SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4 allows remote attackers to bypass the cross-... | E S | |
| CVE-2010-5088 | Multiple cross-site request forgery (CSRF) vulnerabilities in SilverStripe 2.3.x before 2.3.9 and 2.... | S | |
| CVE-2010-5089 | SilverStripe before 2.4.2 does not properly restrict access to pages in draft mode, which allows rem... | S | |
| CVE-2010-5090 | SilverStripe before 2.4.2 allows remote authenticated users to change administrator passwords via ve... | | |
| CVE-2010-5091 | The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.... | E S | |
| CVE-2010-5092 | The Add Member dialog in the Security admin page in SilverStripe 2.4.0 saves user passwords in plain... | S | |
| CVE-2010-5093 | Member_ProfileForm in security/Member.php in SilverStripe 2.3.x before 2.3.7 allows remote attackers... | E S | |
| CVE-2010-5094 | The deleteinstallfiles function in control/ContentController.php in SilverStripe 2.3.x before 2.3.7 ... | | |
| CVE-2010-5095 | Cross-site scripting (XSS) vulnerability in SilverStripe 2.3.x before 2.3.6 allows remote attackers ... | | |
| CVE-2010-5096 | Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) before 1.6.1 allow remote attac... | | |
| CVE-2010-5097 | Cross-site scripting (XSS) vulnerability in the click enlarge functionality in TYPO3 4.3.x before 4.... | | |
| CVE-2010-5098 | Cross-site scripting (XSS) vulnerability in the FORM content object in TYPO3 4.2.x before 4.2.16, 4.... | | |
| CVE-2010-5099 | The fileDenyPattern functionality in the PHP file inclusion protection API in TYPO3 4.2.x before 4.2... | E | |
| CVE-2010-5100 | Multiple cross-site scripting (XSS) vulnerabilities in the Install Tool in TYPO3 4.2.x before 4.2.16... | | |
| CVE-2010-5101 | Directory traversal vulnerability in the TypoScript setup in TYPO3 4.2.x before 4.2.16, 4.3.x before... | | |
| CVE-2010-5102 | Directory traversal vulnerability in mod/tools/em/class.em_unzip.php in the unzip library in TYPO3 4... | | |
| CVE-2010-5103 | SQL injection vulnerability in the list module in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and... | | |
| CVE-2010-5104 | The escapeStrForLike method in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5... | | |
| CVE-2010-5105 | The undo save quit routine in the kernel in Blender 2.5, 2.63a, and earlier allows local users to ov... | | |
| CVE-2010-5106 | The XML-RPC remote publishing interface in xmlrpc.php in WordPress before 3.0.3 does not properly ch... | E S | |
| CVE-2010-5107 | The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a ... | | |
| CVE-2010-5108 | Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be expl... | | |
| CVE-2010-5109 | Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remo... | | |
| CVE-2010-5110 | DCTStream.cc in Poppler before 0.13.3 allows remote attackers to cause a denial of service (crash) v... | E S | |
| CVE-2010-5111 | Multiple buffer overflows in readline.c in Echoping 6.0.2 allow remote attackers to cause a denial o... | | |
| CVE-2010-5112 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2010-5113 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2010-5114 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2010-5115 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2010-5116 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2010-5117 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5118 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5119 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5120 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5121 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5122 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5123 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5124 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5125 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5126 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5127 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5128 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5129 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5130 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5131 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5132 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5133 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5134 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5135 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5136 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w... | R | |
| CVE-2010-5137 | wxBitcoin and bitcoind before 0.3.5 allow remote attackers to cause a denial of service (daemon cras... | | |
| CVE-2010-5138 | wxBitcoin and bitcoind 0.3.x allow remote attackers to cause a denial of service (electricity consum... | | |
| CVE-2010-5139 | Integer overflow in wxBitcoin and bitcoind before 0.3.11 allows remote attackers to bypass intended ... | E | |
| CVE-2010-5140 | wxBitcoin and bitcoind before 0.3.13 do not properly handle bitcoins associated with Bitcoin transac... | | |
| CVE-2010-5141 | wxBitcoin and bitcoind before 0.3.5 do not properly handle script opcodes in Bitcoin transactions, w... | | |
| CVE-2010-5142 | chef-server-api/app/controllers/users.rb in the API in Chef before 0.9.0 does not require administra... | S | |
| CVE-2010-5143 | McAfee VirusScan Enterprise before 8.8 allows local users to disable the product by leveraging admin... | | |
| CVE-2010-5144 | The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.... | E | |
| CVE-2010-5145 | The Filtering Service in Websense Web Security and Web Filter before 6.3.1 Hotfix 136 and 7.x before... | | |
| CVE-2010-5146 | The Remote Filtering component in Websense Web Security and Web Filter before 7.1 Hotfix 66 allows l... | | |
| CVE-2010-5147 | The Remote Filtering component in Websense Web Security and Web Filter before 6.3.3 Hotfix 18 and 7.... | | |
| CVE-2010-5148 | Websense Web Security and Web Filter before 7.1 Hotfix 21 do not set the secure flag for the Encrypt... | | |
| CVE-2010-5149 | Websense Web Security and Web Filter before 6.3.3 Hotfix 27 and 7.x before 7.1.1 allow remote attack... | | |
| CVE-2010-5150 | Race condition in 3D EQSecure Professional Edition 4.2 on Windows XP allows local users to bypass ke... | | |
| CVE-2010-5151 | Race condition in avast! Internet Security 5.0.462 on Windows XP allows local users to bypass kernel... | | |
| CVE-2010-5152 | Race condition in AVG Internet Security 9.0.791 on Windows XP allows local users to bypass kernel-mo... | | |
| CVE-2010-5153 | Race condition in Avira Premium Security Suite 10.0.0.536 on Windows XP allows local users to bypass... | | |
| CVE-2010-5154 | Race condition in BitDefender Total Security 2010 13.0.20.347 on Windows XP allows local users to by... | | |
| CVE-2010-5155 | Race condition in Blink Professional 4.6.1 on Windows XP allows local users to bypass kernel-mode ho... | | |
| CVE-2010-5156 | Race condition in CA Internet Security Suite Plus 2010 6.0.0.272 on Windows XP allows local users to... | | |
| CVE-2010-5157 | Race condition in Comodo Internet Security before 4.1.149672.916 on Windows XP allows local users to... | | |
| CVE-2010-5158 | Race condition in DefenseWall Personal Firewall 3.00 on Windows XP allows local users to bypass kern... | | |
| CVE-2010-5159 | Race condition in Dr.Web Security Space Pro 6.0.0.03100 on Windows XP allows local users to bypass k... | | |
| CVE-2010-5160 | Race condition in ESET Smart Security 4.2.35.3 on Windows XP allows local users to bypass kernel-mod... | | |
| CVE-2010-5161 | Race condition in F-Secure Internet Security 2010 10.00 build 246 on Windows XP allows local users t... | | |
| CVE-2010-5162 | Race condition in G DATA TotalCare 2010 on Windows XP allows local users to bypass kernel-mode hook ... | | |
| CVE-2010-5163 | Race condition in Kaspersky Internet Security 2010 9.0.0.736 on Windows XP allows local users to byp... | | |
| CVE-2010-5164 | Race condition in KingSoft Personal Firewall 9 Plus 2009.05.07.70 on Windows XP allows local users t... | | |
| CVE-2010-5165 | Race condition in Malware Defender 2.6.0 on Windows XP allows local users to bypass kernel-mode hook... | | |
| CVE-2010-5166 | Race condition in McAfee Total Protection 2010 10.0.580 on Windows XP allows local users to bypass k... | | |
| CVE-2010-5167 | Race condition in Norman Security Suite PRO 8.0 on Windows XP allows local users to bypass kernel-mo... | | |
| CVE-2010-5168 | Race condition in Symantec Norton Internet Security 2010 17.5.0.127 on Windows XP allows local users... | | |
| CVE-2010-5169 | Race condition in Online Armor Premium 4.0.0.35 on Windows XP allows local users to bypass kernel-mo... | | |
| CVE-2010-5170 | Race condition in Online Solutions Security Suite 1.5.14905.0 on Windows XP allows local users to by... | | |
| CVE-2010-5171 | Race condition in Outpost Security Suite Pro 6.7.3.3063.452.0726 and 7.0.3330.505.1221 BETA on Windo... | | |
| CVE-2010-5172 | Race condition in Panda Internet Security 2010 15.01.00 on Windows XP allows local users to bypass k... | | |
| CVE-2010-5173 | Race condition in PC Tools Firewall Plus 6.0.0.88 on Windows XP allows local users to bypass kernel-... | | |
| CVE-2010-5174 | Race condition in Prevx 3.0.5.143 on Windows XP allows local users to bypass kernel-mode hook handle... | | |
| CVE-2010-5175 | Race condition in PrivateFirewall 7.0.20.37 on Windows XP allows local users to bypass kernel-mode h... | | |
| CVE-2010-5176 | Race condition in Security Shield 2010 13.0.16.313 on Windows XP allows local users to bypass kernel... | | |
| CVE-2010-5177 | Race condition in Sophos Endpoint Security and Control 9.0.5 on Windows XP allows local users to byp... | | |
| CVE-2010-5178 | Race condition in ThreatFire 4.7.0.17 on Windows XP allows local users to bypass kernel-mode hook ha... | | |
| CVE-2010-5179 | Race condition in Trend Micro Internet Security Pro 2010 17.50.1647.0000 on Windows XP allows local ... | | |
| CVE-2010-5180 | Race condition in VBA32 Personal 3.12.12.4 on Windows XP allows local users to bypass kernel-mode ho... | | |
| CVE-2010-5181 | Race condition in VIPRE Antivirus Premium 4.0.3272 on Windows XP allows local users to bypass kernel... | | |
| CVE-2010-5182 | Race condition in VirusBuster Internet Security Suite 3.2 on Windows XP allows local users to bypass... | | |
| CVE-2010-5183 | Race condition in Webroot Internet Security Essentials 6.1.0.145 on Windows XP allows local users to... | | |
| CVE-2010-5184 | Race condition in ZoneAlarm Extreme Security 9.1.507.000 on Windows XP allows local users to bypass ... | | |
| CVE-2010-5185 | The Antivirus component in Comodo Internet Security before 5.3.174622.1216 does not check whether X.... | | |
| CVE-2010-5186 | The Antivirus component in Comodo Internet Security before 4.1.150349.920 allows remote attackers to... | | |
| CVE-2010-5187 | SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1, when running on servers with certain configu... | | |
| CVE-2010-5188 | SilverStripe 2.3.x before 2.3.6 allows remote attackers to obtain sensitive information via the (1) ... | E S | |
| CVE-2010-5189 | Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x bef... | | |
| CVE-2010-5190 | The Active Content Transformation functionality in Blue Coat ProxySG before SGOS 4.3.4.2, 5.x before... | | |
| CVE-2010-5191 | Multiple cross-site request forgery (CSRF) vulnerabilities on the Blue Coat ProxyAV appliance before... | | |
| CVE-2010-5192 | Cross-site scripting (XSS) vulnerability in the Java Management Console in Blue Coat ProxySG before ... | | |
| CVE-2010-5193 | Stack-based buffer overflow in the TIFMergeMultiFiles function in the SCRIBBLE.ScribbleCtrl.1 Active... | E | |
| CVE-2010-5194 | Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control... | E | |
| CVE-2010-5195 | Untrusted search path vulnerability in Roxio MyDVD 9 allows local users to gain privileges via a Tro... | E | |
| CVE-2010-5196 | Untrusted search path vulnerability in KeePass Password Safe before 2.13 allows local users to gain ... | | |
| CVE-2010-5197 | Untrusted search path vulnerability in Pixia 4.70j allows local users to gain privileges via a Troja... | | |
| CVE-2010-5198 | Multiple untrusted search path vulnerabilities in Intuit QuickBooks 2010 allow local users to gain p... | | |
| CVE-2010-5199 | Untrusted search path vulnerability in PhotoImpact X3 13.00.0000.0 allows local users to gain privil... | | |
| CVE-2010-5200 | Untrusted search path vulnerability in KeePass Password Safe before 1.18 allows local users to gain ... | S | |
| CVE-2010-5201 | Untrusted search path vulnerability in MAGIX Samplitude Producer 11 allows local users to gain privi... | | |
| CVE-2010-5202 | Untrusted search path vulnerability in JetAudio 8.0.7.1000 Basic allows local users to gain privileg... | | |
| CVE-2010-5203 | Multiple untrusted search path vulnerabilities in NCP Secure Enterprise Client before 9.21 Build 68,... | | |
| CVE-2010-5204 | Multiple untrusted search path vulnerabilities in IBM Lotus Symphony 1.3.0 20090908.0900 allow local... | | |
| CVE-2010-5205 | Multiple untrusted search path vulnerabilities in e-press ONE Office Author allow local users to gai... | | |
| CVE-2010-5206 | Multiple untrusted search path vulnerabilities in e-press ONE Office E-NoteTaker and E-Zip allow loc... | | |
| CVE-2010-5207 | Multiple untrusted search path vulnerabilities in CelFrame Office 2008 Standard Edition allow local ... | | |
| CVE-2010-5208 | Multiple untrusted search path vulnerabilities in the (1) Presentation, (2) Writer, and (3) Spreadsh... | | |
| CVE-2010-5209 | Multiple untrusted search path vulnerabilities in Nuance PDF Reader 6.0 allow local users to gain pr... | | |
| CVE-2010-5210 | Untrusted search path vulnerability in Sorax Reader 2.0.3129.70 allows local users to gain privilege... | | |
| CVE-2010-5211 | Untrusted search path vulnerability in ALSee 6.20.0.1 allows local users to gain privileges via a Tr... | | |
| CVE-2010-5212 | Untrusted search path vulnerability in Adobe LiveCycle Designer ES2 9.0.0.20091029.1.612548 allows l... | | |
| CVE-2010-5213 | Untrusted search path vulnerability in Adobe LiveCycle Designer 8.2.1.3144.1.471865 allows local use... | | |
| CVE-2010-5214 | Untrusted search path vulnerability in Fotobook Editor 5.0 2.8.0.1 allows local users to gain privil... | | |
| CVE-2010-5215 | Multiple untrusted search path vulnerabilities in SWiSH Max3 3.0 2009.11.30 allow local users to gai... | | |
| CVE-2010-5216 | Untrusted search path vulnerability in LINGO 11.0.1.6 and 12.0.2.20 allows local users to gain privi... | | |
| CVE-2010-5217 | Multiple untrusted search path vulnerabilities in TuneUp Utilities 2009 8.0.3310 and 2010 9.0.4600 a... | | |
| CVE-2010-5218 | Untrusted search path vulnerability in Dupehunter 9.0.0.3911 allows local users to gain privileges v... | | |
| CVE-2010-5219 | Untrusted search path vulnerability in SmartFTP 4.0.1140.0 allows local users to gain privileges via... | | |
| CVE-2010-5220 | Untrusted search path vulnerability in MEO Encryption Software 2.02 allows local users to gain privi... | | |
| CVE-2010-5221 | Untrusted search path vulnerability in STDU Explorer 1.0.201 allows local users to gain privileges v... | | |
| CVE-2010-5222 | Untrusted search path vulnerability in Ease Jukebox 1.40 allows local users to gain privileges via a... | | |
| CVE-2010-5223 | Multiple untrusted search path vulnerabilities in Phoenix Project Manager 2.1.0.8 allow local users ... | | |
| CVE-2010-5224 | Untrusted search path vulnerability in Cool iPhone Ringtone Maker 2.2.3 allows local users to gain p... | | |
| CVE-2010-5225 | Untrusted search path vulnerability in Babylon 8.1.0 r16 allows local users to gain privileges via a... | | |
| CVE-2010-5226 | Multiple untrusted search path vulnerabilities in Autodesk Design Review 2011 11.0.0.86 allow local ... | | |
| CVE-2010-5227 | Untrusted search path vulnerability in Opera before 10.62 allows local users to gain privileges via ... | E | |
| CVE-2010-5228 | Untrusted search path vulnerability in RealPlayer SP 1.1.5 12.0.0.879 allows local users to gain pri... | | |
| CVE-2010-5229 | Untrusted search path vulnerability in 010 Editor before 3.1.3 allows local users to gain privileges... | | |
| CVE-2010-5230 | Multiple untrusted search path vulnerabilities in MicroStation 7.1 allow local users to gain privile... | | |
| CVE-2010-5231 | Untrusted search path vulnerability in DivX Player 7.2.019 allows local users to gain privileges via... | | |
| CVE-2010-5232 | Untrusted search path vulnerability in DivX Plus Player 8.1.0 allows local users to gain privileges ... | | |
| CVE-2010-5233 | Untrusted search path vulnerability in Virtual DJ 6.1.2 Trial b301 allows local users to gain privil... | | |
| CVE-2010-5234 | Multiple untrusted search path vulnerabilities in Camtasia Studio 7.0.1 build 57 allow local users t... | | |
| CVE-2010-5235 | Untrusted search path vulnerability in IZArc Archiver 4.1.2 allows local users to gain privileges vi... | | |
| CVE-2010-5236 | Untrusted search path vulnerability in Roxio Easy Media Creator Home 9.0.136 allows local users to g... | E | |
| CVE-2010-5237 | Untrusted search path vulnerability in CyberLink PowerDirector 7 allows local users to gain privileg... | | |
| CVE-2010-5238 | Untrusted search path vulnerability in CyberLink PowerDirector 8.00.3022 allows local users to gain ... | | |
| CVE-2010-5239 | Untrusted search path vulnerability in DAEMON Tools Lite 4.35.6.0091 and Pro Standard 4.36.0309.0160... | E | |
| CVE-2010-5240 | Multiple untrusted search path vulnerabilities in Corel PHOTO-PAINT and CorelDRAW X5 15.1.0.588 allo... | | |
| CVE-2010-5241 | Multiple untrusted search path vulnerabilities in Autodesk AutoCAD 2010 allow local users to gain pr... | | |
| CVE-2010-5242 | Untrusted search path vulnerability in Sound Forge Pro 10.0b Build 474 allows local users to gain pr... | | |
| CVE-2010-5243 | Multiple untrusted search path vulnerabilities in Cyberlink Power2Go 7.0.0.0816 allow local users to... | | |
| CVE-2010-5244 | Untrusted search path vulnerability in SiSoftware Sandra 2010 Lite 2010.7.16.52 allows local users t... | | |
| CVE-2010-5245 | Untrusted search path vulnerability in PDF-XChange Viewer 2.0 Build 54.0 allows local users to gain ... | | |
| CVE-2010-5246 | Multiple untrusted search path vulnerabilities in Maxthon Browser 1.6.7.35 and 2.5.15 allow local us... | | |
| CVE-2010-5247 | Untrusted search path vulnerability in QtWeb Browser 3.3 build 043 allows local users to gain privil... | E | |
| CVE-2010-5248 | Untrusted search path vulnerability in UltraVNC 1.0.8.2 allows local users to gain privileges via a ... | | |
| CVE-2010-5249 | Untrusted search path vulnerability in Sophos Free Encryption 2.40.1.1 and Sophos SafeGuard PrivateC... | | |
| CVE-2010-5250 | Untrusted search path vulnerability in the pthread_win32_process_attach_np function in pthreadGC2.dl... | | |
| CVE-2010-5251 | Multiple untrusted search path vulnerabilities in IBM Lotus Notes 8.5 allow local users to gain priv... | | |
| CVE-2010-5252 | Untrusted search path vulnerability in HTTrack 3.43-9 allows local users to gain privileges via a Tr... | | |
| CVE-2010-5253 | Untrusted search path vulnerability in WinImage 8.50 allows local users to gain privileges via a Tro... | | |
| CVE-2010-5254 | Untrusted search path vulnerability in GFI Backup 3.1 Build 20100730 2009 Home Edition allows local ... | | |
| CVE-2010-5255 | Untrusted search path vulnerability in UltraISO 9.3.6.2750 allows local users to gain privileges via... | | |
| CVE-2010-5256 | Untrusted search path vulnerability in CDisplay 1.8.1 allows local users to gain privileges via a Tr... | | |
| CVE-2010-5257 | Multiple untrusted search path vulnerabilities in ArchiCAD 13 and 14 allow local users to gain privi... | | |
| CVE-2010-5258 | Untrusted search path vulnerability in Adobe Audition 3.0 build 7283.0 allows local users to gain pr... | | |
| CVE-2010-5259 | Multiple untrusted search path vulnerabilities in IsoBuster 2.8 allow local users to gain privileges... | | |
| CVE-2010-5260 | Untrusted search path vulnerability in Agrin All DVD Ripper 4.0 allows local users to gain privilege... | | |
| CVE-2010-5261 | Untrusted search path vulnerability in SnowFox Total Video Converter 2.5.1 allows local users to gai... | | |
| CVE-2010-5262 | Multiple untrusted search path vulnerabilities in libmcl-5.4.0.dll in Gromada Multimedia Conversion ... | | |
| CVE-2010-5263 | Untrusted search path vulnerability in Sothink SWF Decompiler 6.0 Build 610 allows local users to ga... | | |
| CVE-2010-5264 | Untrusted search path vulnerability in the CExtDWM::CExtDWM method in ProfUIS290m.dll and ProfUIS290... | | |
| CVE-2010-5265 | Untrusted search path vulnerability in SmartSniff 1.71 allows local users to gain privileges via a T... | | |
| CVE-2010-5266 | Untrusted search path vulnerability in VideoCharge Studio 2.9.0.632 allows local users to gain privi... | | |
| CVE-2010-5267 | Untrusted search path vulnerability in MunSoft Easy Office Recovery 1.1 allows local users to gain p... | | |
| CVE-2010-5268 | Untrusted search path vulnerability in Amazon Kindle for PC 1.3.0 30884 allows local users to gain p... | | |
| CVE-2010-5269 | Untrusted search path vulnerability in tbb.dll in Intel Threading Building Blocks (TBB) 2.2.013 allo... | | |
| CVE-2010-5270 | Multiple untrusted search path vulnerabilities in Adobe Device Central CS4 2.0.0 0476 allow local us... | | |
| CVE-2010-5271 | Untrusted search path vulnerability in Altova MapForce 2011 Enterprise Edition SP1 allows local user... | | |
| CVE-2010-5272 | Untrusted search path vulnerability in Altova DatabaseSpy 2011 Enterprise Edition SP1 allows local u... | | |
| CVE-2010-5273 | Untrusted search path vulnerability in Altova DiffDog 2011 Enterprise Edition SP1 allows local users... | | |
| CVE-2010-5274 | Untrusted search path vulnerability in PKZIP before 12.50.0014 allows local users to gain privileges... | | |
| CVE-2010-5275 | Cross-site scripting (XSS) vulnerability in memcache_admin in the Memcache module 5.x before 5.x-1.1... | S | |
| CVE-2010-5276 | The Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal does not properly handle t... | S | |
| CVE-2010-5277 | Unspecified vulnerability in the Views Bulk Operations module 6 before 6.x-1.10 for Drupal allows re... | S | |
| CVE-2010-5278 | Directory traversal vulnerability in manager/controllers/default/resource/tvs.php in MODx Revolution... | | |
| CVE-2010-5279 | article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to cause a denial of service ... | E | |
| CVE-2010-5280 | Directory traversal vulnerability in the Community Builder Enhanced (CBE) (com_cbe) component 1.4.8,... | E | |
| CVE-2010-5281 | Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1,... | E | |
| CVE-2010-5282 | Multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM (formerly Livelink ECM) 9.7.1 al... | E | |
| CVE-2010-5283 | Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink ECM) 9.7.1 allows... | E | |
| CVE-2010-5284 | Multiple cross-site scripting (XSS) vulnerabilities in Collabtive 0.6.5 allow remote attackers to in... | E | |
| CVE-2010-5285 | Cross-site request forgery (CSRF) vulnerability in admin.php in Collabtive 0.6.5 allows remote attac... | E | |
| CVE-2010-5286 | Directory traversal vulnerability in Jstore (com_jstore) component for Joomla! allows remote attacke... | E | |
| CVE-2010-5287 | SQL injection vulnerability in default.php in Cornerstone Technologies webConductor allows remote at... | E | |
| CVE-2010-5288 | Buffer overflow in the lsConnectionCached function in editcp in EDItran Communications Platform 4.1 ... | | |
| CVE-2010-5289 | Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.... | E | |
| CVE-2010-5290 | The authentication process in Adobe ColdFusion before 10 does not require knowledge of the cleartext... | | |
| CVE-2010-5291 | Amberdms Billing System (ABS) before 1.4.1 does not properly implement blacklisting after detection ... | | |
| CVE-2010-5292 | Amberdms Billing System (ABS) before 1.4.1, when a multi-instance installation is configured, might ... | | |
| CVE-2010-5293 | wp-includes/comment.php in WordPress before 3.0.2 does not properly whitelist trackbacks and pingbac... | E S | |
| CVE-2010-5294 | Multiple cross-site scripting (XSS) vulnerabilities in the request_filesystem_credentials function i... | E S | |
| CVE-2010-5295 | Cross-site scripting (XSS) vulnerability in wp-admin/plugins.php in WordPress before 3.0.2 might all... | E S | |
| CVE-2010-5296 | wp-includes/capabilities.php in WordPress before 3.0.2, when a Multisite configuration is used, does... | E S | |
| CVE-2010-5297 | WordPress before 3.0.1, when a Multisite installation is used, permanently retains the "site adminis... | E S | |
| CVE-2010-5298 | Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_... | S | |
| CVE-2010-5299 | Stack-based buffer overflow in MicroP 0.1.1.1600 allows remote attackers to execute arbitrary code v... | E | |
| CVE-2010-5300 | Stack-based buffer overflow in Jzip 1.3 through 2.0.0.132900 allows remote attackers to cause a deni... | E | |
| CVE-2010-5301 | Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a l... | E | |
| CVE-2010-5302 | Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb before 1.15 as of 20100908 (r88... | | |
| CVE-2010-5303 | Cross-site scripting (XSS) vulnerability in the displayError function in timthumb.php in TimThumb be... | S | |
| CVE-2010-5304 | A NULL pointer dereference flaw was found in the way LibVNCServer before 0.9.9 handled certain Clien... | | |
| CVE-2010-5305 | The potential exists for exposure of the product's password used to restrict unauthorized access to ... | M | |
| CVE-2010-5306 | GE Healthcare Optima CT680, CT540, CT640, and CT520 has a default password of #bigguy for the root u... | | |
| CVE-2010-5307 | The HIPAA configuration interface in GE Healthcare Optima MR360 has a password of (1) operator for t... | | |
| CVE-2010-5308 | GE Healthcare Optima MR360 does not require authentication for the HIPAA emergency login procedure, ... | | |
| CVE-2010-5309 | GE Healthcare CADStream Server has a default password of confirma for the admin user, which has unsp... | | |
| CVE-2010-5310 | The Acquisition Workstation for the GE Healthcare Revolution XQ/i has a password of adw3.1 for the s... | | |
| CVE-2010-5312 | Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI be... | E S | |
| CVE-2010-5313 | Race condition in arch/x86/kvm/x86.c in the Linux kernel before 2.6.38 allows L2 guest OS users to c... | S | |
| CVE-2010-5314 | Cross-site scripting (XSS) vulnerability in controllers/home_controller.php in BEdita before 3.1 all... | E | |
| CVE-2010-5315 | Multiple cross-site request forgery (CSRF) vulnerabilities in BEdita before 3.1 allow remote attacke... | E | |
| CVE-2010-5316 | Cross-site scripting (XSS) vulnerability in as/index.php in SweetRice CMS before 0.6.7.1 allows remo... | E | |
| CVE-2010-5317 | Multiple SQL injection vulnerabilities in index.php in SweetRice CMS before 0.6.7.1 allow remote att... | E | |
| CVE-2010-5318 | The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers t... | E | |
| CVE-2010-5319 | Multiple cross-site request forgery (CSRF) vulnerabilities in Kandidat CMS 1.4.2 allow remote attack... | E | |
| CVE-2010-5320 | Multiple cross-site request forgery (CSRF) vulnerabilities in MemHT Portal 4.0.1 allow remote attack... | E | |
| CVE-2010-5321 | Memory leak in drivers/media/video/videobuf-core.c in the videobuf subsystem in the Linux kernel 2.6... | | |
| CVE-2010-5322 | Cross-site scripting (XSS) vulnerability in ZeusCart 4.0 and earlier allows remote attackers to inje... | E | |
| CVE-2010-5323 | Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENw... | E S | |
| CVE-2010-5324 | Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENw... | E S | |
| CVE-2010-5325 | Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.... | S | |
| CVE-2010-5326 | The Invoker Servlet on SAP NetWeaver Application Server Java platforms, possibly before 7.3, does no... | KEV | |
| CVE-2010-5327 | Liferay Portal through 6.2.10 allows remote authenticated users to execute arbitrary shell commands ... | S | |
| CVE-2010-5328 | include/linux/init_task.h in the Linux kernel before 2.6.35 does not prevent signals with a process ... | S | |
| CVE-2010-5329 | The video_usercopy function in drivers/media/video/v4l2-ioctl.c in the Linux kernel before 2.6.39 re... | S | |
| CVE-2010-5330 | On certain Ubiquiti devices, Command Injection exists via a GET request to stainfo.cgi (aka Show AP ... | KEV S | |
| CVE-2010-5331 | In the Linux kernel before 2.6.34, a range check issue in drivers/gpu/drm/radeon/atombios.c could ca... | S | |
| CVE-2010-5332 | In the Linux kernel before 2.6.37, an out of bounds array access happened in drivers/net/mlx4/port.c... | S | |
| CVE-2010-5333 | The web server in Integard Pro and Home before 2.0.0.9037 and 2.2.x before 2.2.0.9037 has a buffer o... | E | |
| CVE-2010-5334 | IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss of ... | | |
| CVE-2010-5335 | IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss of ... | | |
| CVE-2010-5336 | IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: admin/login.html with the paramete... | | |
| CVE-2010-5337 | IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter ... | | |
| CVE-2010-5338 | IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter ... | | |
| CVE-2010-5339 | IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter ... | | |
| CVE-2010-5340 | IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/ with the parameter passwo... | |