|
348901
|
- |
|
accomplishtechnology
|
phpmydirectory
|
Cross-site scripting (XSS) vulnerability in alpha.php in phpMyDirectory 10.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the letter parameter. NOTE: the provenan…
|
CWE-79
Cross-site Scripting
|
CVE-2006-4755
|
2012-10-22 13:00 |
2006-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348902
|
- |
|
accomplishtechnology
|
phpmydirectory
|
SQL injection vulnerability in alpha.php in phpMyDirectory 10.4.6 and earlier allows remote attackers to execute arbitrary SQL commands via the letter parameter. NOTE: the provenance of this informa…
|
CWE-89
SQL Injection
|
CVE-2006-4756
|
2012-10-22 13:00 |
2006-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348903
|
- |
|
plogger
|
plogger
|
SQL injection vulnerability in Plogger Beta 2 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id parameter to index.php and (2) page parameter.
|
CWE-89
SQL Injection
|
CVE-2005-4246
|
2012-10-22 13:00 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348904
|
- |
|
plogger
|
plogger
|
Cross-site scripting (XSS) vulnerability in index.php in Plogger Beta 2 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2005-4247
|
2012-10-22 13:00 |
2005-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348905
|
- |
|
k5n
|
webcalendar
|
Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar 1.2.0, and other versions before 1.2.5, allow remote attackers to inject arbitrary web script or HTML via the (1) tab parameter to u…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0636
|
2012-10-13 11:58 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348906
|
- |
|
k5n
|
webcalendar
|
Multiple cross-site request forgery (CSRF) vulnerabilities in WebCalendar 1.2.0, and other versions before 1.2.5, allow remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2010-0637
|
2012-10-13 11:58 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348907
|
- |
|
html2ps_project
|
html2ps
|
Unknown vulnerability in html2ps HTML/PostScript converter 1.0, when used within LPRng, allows remote attackers to execute arbitrary code via "unsanitized input."
|
NVD-CWE-noinfo
|
CVE-2002-1275
|
2012-10-11 13:00 |
2002-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348908
|
- |
|
colony
|
colony_cms
colony_e-commerce_cms
colony_enterprise_cms
colony_government_cms
|
Cross-site scripting (XSS) vulnerability in Colony CMS 2.75 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2005-4386
|
2012-08-6 13:00 |
2005-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348909
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
Multiple cross-site scripting (XSS) vulnerabilities in Basic Analysis and Security Engine (BASE) before 1.4.3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) sig[1] parame…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4837
|
2012-07-3 13:00 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348910
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
SQL injection vulnerability in base_ag_common.php in Basic Analysis and Security Engine (BASE) before 1.4.3.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NO…
|
CWE-89
SQL Injection
|
CVE-2009-4838
|
2012-07-3 13:00 |
2010-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
