|
293991
|
- |
|
php-paid4mail
|
php-paid4mail
|
SQL injection vulnerability in paidbanner.php in PHP Paid 4 Mail Script allows remote attackers to execute arbitrary SQL commands via the ID parameter.
|
CWE-89
SQL Injection
|
CVE-2009-2774
|
2017-09-19 10:29 |
2009-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293992
|
- |
|
phparcadescript
|
phparcadescript
|
SQL injection vulnerability in linkout.php in PHPArcadeScript (PHP Arcade Script) 4.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2009-2775
|
2017-09-19 10:29 |
2009-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293993
|
- |
|
garagesalesjunkie
|
garagesales_script
|
SQL injection vulnerability in visitor/view.php in GarageSales Script allows remote attackers to execute arbitrary SQL commands via the key parameter.
|
CWE-89
SQL Injection
|
CVE-2009-2777
|
2017-09-19 10:29 |
2009-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293994
|
- |
|
garagesalesjunkie
|
garagesales_script
|
Cross-site scripting (XSS) vulnerability in visitor/view.php in GarageSales Script allows remote attackers to inject arbitrary web script or HTML via the key parameter. NOTE: some of these details a…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2778
|
2017-09-19 10:29 |
2009-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293995
|
- |
|
arabportal
|
arab_portal
|
SQL injection vulnerability in forum.php in Arab Portal 2.x, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the qc parameter in an addcomme…
|
CWE-89
SQL Injection
|
CVE-2009-2781
|
2017-09-19 10:29 |
2009-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293996
|
- |
|
jfusion
|
com_jfusion
|
SQL injection vulnerability in the JFusion (com_jfusion) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2009-2782
|
2017-09-19 10:29 |
2009-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293997
|
- |
|
ditcms
|
dit.cms
|
Multiple directory traversal vulnerabilities in dit.cms 1.3, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the path param…
|
CWE-22
Path Traversal
|
CVE-2009-2784
|
2017-09-19 10:29 |
2009-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293998
|
- |
|
reputation
|
reputation
|
SQL injection vulnerability in reputation.php in the Reputation plugin 2.2.4, 2.2.3, 2.0.4, and earlier for PunBB allows remote attackers to execute arbitrary SQL commands via the poster parameter.
|
CWE-89
SQL Injection
|
CVE-2009-2786
|
2017-09-19 10:29 |
2009-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293999
|
- |
|
reputation
|
reputation
|
Directory traversal vulnerability in include/reputation/rep_profile.php in the Reputation plugin 2.2.4, 2.2.3, 2.0.4, and earlier for PunBB, when register_globals is enabled and magic_quotes_gpc is d…
|
CWE-22
Path Traversal
|
CVE-2009-2787
|
2017-09-19 10:29 |
2009-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294000
|
- |
|
mobilelib
|
mobilelib_gold
|
Multiple SQL injection vulnerabilities in Mobilelib GOLD 3 allow remote attackers to execute arbitrary SQL commands via the (1) adminName parameter to cp/auth.php, (2) cid parameter to artcat.php, an…
|
CWE-89
SQL Injection
|
CVE-2009-2788
|
2017-09-19 10:29 |
2009-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
