|
345471
|
- |
|
freephpblogsoftware
|
freephpblogsoftware
|
PHP remote file inclusion vulnerability in default_theme.php in FreePHPBlogSoftware 1.0, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpin…
|
CWE-94
Code Injection
|
CVE-2010-1978
|
2017-08-17 10:32 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345472
|
- |
|
affiliatefeeds
|
com_datafeeds
|
Directory traversal vulnerability in the Affiliate Datafeeds (com_datafeeds) component build 880 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller param…
|
CWE-22
Path Traversal
|
CVE-2010-1979
|
2017-08-17 10:32 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345473
|
- |
|
roberto_aloi
|
com_joomlaflickr
|
Directory traversal vulnerability in joomlaflickr.php in the Joomla Flickr (com_joomlaflickr) component 1.0.3 for Joomla! allows remote attackers to include and execute arbitrary local files via a ..…
|
CWE-22
Path Traversal
|
CVE-2010-1980
|
2017-08-17 10:32 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345474
|
- |
|
redcomponent
|
com_redtwitter
|
Directory traversal vulnerability in the redTWITTER (com_redtwitter) component 1.0.x including 1.0b11 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parame…
|
CWE-22
Path Traversal
|
CVE-2010-1983
|
2017-08-17 10:32 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345475
|
- |
|
michael_nichols
|
taxonomy_breadcrumb
|
Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 5.x before 5.x-1.5 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1984
|
2017-08-17 10:32 |
2010-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345476
|
- |
|
tomatocms
|
tomatocms
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in TomatoCMS before 2.0.5 allow remote authenticated users, with certain creation privileges, to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1996
|
2017-08-17 10:32 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345477
|
- |
|
kevinhankens
|
tablefield
|
Cross-site scripting (XSS) vulnerability in the CCK TableField module 6.x before 6.x-1.2 for Drupal allows remote authenticated users, with certain node creation or editing privileges, to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1998
|
2017-08-17 10:32 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345478
|
- |
|
bsplayer
|
bs.player
|
Stack-based buffer overflow in BS.Global BS.Player 2.51 Build 1022 Free, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via the Skin parameter in the Opt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2004
|
2017-08-17 10:32 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345479
|
- |
|
datalifecms
|
datalife_engine
|
Multiple PHP remote file inclusion vulnerabilities in DataLife Engine (DLE) 8.3 allow remote attackers to execute arbitrary PHP code via a URL in (1) the selected_language parameter to engine/inc/inc…
|
CWE-94
Code Injection
|
CVE-2010-2005
|
2017-08-17 10:32 |
2010-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345480
|
- |
|
chaos_tool_suite_project
|
ctools
|
Multiple cross-site scripting (XSS) vulnerabilities in the Chaos Tool Suite (aka CTools) module 6.x before 6.x-1.4 for Drupal allow remote attackers to inject arbitrary web script or HTML via a node …
|
CWE-79
Cross-site Scripting
|
CVE-2010-2010
|
2017-08-17 10:32 |
2010-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
