|
347921
|
- |
|
adobe
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in an unspecified method in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3467
|
2010-05-14 13:00 |
2010-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347922
|
- |
|
adobe
|
coldfusion
|
Per: http://www.adobe.com/support/security/bulletins/apsb10-11.html
'Affected software versions
ColdFusion 8.0, 8.0.1, 9.0 and earlier versions for Windows, Macintosh and UNIX'
|
CWE-79
Cross-site Scripting
|
CVE-2009-3467
|
2010-05-14 13:00 |
2010-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347923
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Cross-site scripting (XSS) vulnerability in admin/editprefs.php in the backend in CMS Made Simple (CMSMS) before 1.7.1 might allow remote attackers to inject arbitrary web script or HTML via the date…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1482
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347924
|
- |
|
openmairie
|
openannuaire
|
Directory traversal vulnerability in scr/soustab.php in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via direct…
|
CWE-22
Path Traversal
|
CVE-2010-1920
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347925
|
- |
|
openmairie
|
openannuaire
|
Multiple PHP remote file inclusion vulnerabilities in OpenMairie openAnnuaire 2.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om par…
|
CWE-94
Code Injection
|
CVE-2010-1921
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347926
|
- |
|
rifat_kurban
|
tekno.portal
|
SQL injection vulnerability in makale.php in tekno.Portal 0.1b allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-2817.
|
CWE-89
SQL Injection
|
CVE-2010-1925
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347927
|
- |
|
openmairie
|
opencourrier
|
Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote attackers to include and execute arbitrary local fi…
|
CWE-22
Path Traversal
|
CVE-2010-1926
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347928
|
- |
|
openmairie
|
opencourrier
|
Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in t…
|
CWE-94
Code Injection
|
CVE-2010-1927
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347929
|
- |
|
openmairie
|
openplanning
|
Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_om par…
|
CWE-94
Code Injection
|
CVE-2010-1934
|
2010-05-13 13:00 |
2010-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347930
|
- |
|
xoops
|
xoops
|
The activation resend function in the Profiles module in XOOPS before 2.4.1 sends activation codes in response to arbitrary activation requests, which allows remote attackers to bypass administrative…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4851
|
2010-05-13 13:00 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
