|
350641
|
- |
|
markus_barchfeld
|
pm_tour
|
SQL injection vulnerability in the Tour Extension (pm_tour) extension before 0.0.13 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4702
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350642
|
- |
|
typo3
|
ws_gallery
|
SQL injection vulnerability in the Webesse Image Gallery (ws_gallery) extension 1.0.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4703
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350643
|
- |
|
typo3
|
ws_ecard
|
Unspecified vulnerability in the Webesse E-Card (ws_ecard) extension 1.0.2 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-4704
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350644
|
- |
|
thomas_loeffler
|
twittersearch
|
Cross-site scripting (XSS) vulnerability in the Twitter Search (twittersearch) extension before 0.1.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4705
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350645
|
- |
|
sebastian_winterhalder
|
mailform
|
Cross-site scripting (XSS) vulnerability in the Mailform (mailform) extension before 0.9.24 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4706
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350646
|
- |
|
maximo_cuadros
|
gb_fenewssubmit
|
Cross-site scripting (XSS) vulnerability in the [Gobernalia] Front End News Submitter (gb_fenewssubmit) extension 0.1.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4707
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350647
|
- |
|
maximo_cuadros
|
gb_fenewssubmit
|
SQL injection vulnerability in the [Gobernalia] Front End News Submitter (gb_fenewssubmit) extension 0.1.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecif…
|
CWE-89
SQL Injection
|
CVE-2009-4708
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350648
|
- |
|
jan_bednarik
|
cooluri
|
SQL injection vulnerability in the CoolURI (cooluri) extension before 1.0.16 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability tha…
|
CWE-89
SQL Injection
|
CVE-2009-4711
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350649
|
- |
|
tukanas
|
easyclassifieds_script
|
SQL injection vulnerability in index.php in Tukanas Classifieds (aka EasyClassifieds) Script 1.0 allows remote attackers to execute arbitrary SQL commands via the b parameter.
|
CWE-89
SQL Injection
|
CVE-2009-4712
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350650
|
- |
|
gonafish
|
webstatcaffe
|
Multiple cross-site scripting (XSS) vulnerabilities in Gonafish WebStatCaffe allow remote attackers to inject arbitrary web script or HTML via the (1) host parameter to stat/host.php, nodayshow param…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4717
|
2010-03-16 13:00 |
2010-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
