|
294401
|
- |
|
osclass
|
osclass
|
Cross-site scripting (XSS) vulnerability in oc-admin/ajax/ajax.php in OSClass before 2.3.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter in an enable_category ac…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5163
|
2024-11-21 10:44 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294402
|
- |
|
osclass
|
osclass
|
Multiple SQL injection vulnerabilities in oc-admin/ajax/ajax.php in OSClass before 2.3.5 allow remote attackers to execute arbitrary SQL commands via the id parameter in a (1) edit_category_post or (…
|
CWE-89
SQL Injection
|
CVE-2012-5162
|
2024-11-21 10:44 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294403
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 3.5.2.2, as distributed by the cdnetworks-kr-1 mirror during an unspecified time frame in 2012, contains an externally introduced modification (Trojan Horse) in server_sync.php, which allo…
|
CWE-94
Code Injection
|
CVE-2012-5159
|
2024-11-21 10:44 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294404
|
- |
|
sqlitemanager
|
sqlitemanager
|
Multiple cross-site scripting (XSS) vulnerabilities in SQLiteManager 1.2.4 allow remote attackers to inject arbitrary web script or HTML via the dbsel parameter to (1) main.php or (2) index.php; or (…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5105
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294405
|
- |
|
ubbcentral
|
ubb.threads
|
Cross-site scripting (XSS) vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5104
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294406
|
- |
|
dnelubin
|
gelinsguestbook
|
Multiple cross-site scripting (XSS) vulnerabilities in action/add-submit.php in Ggb Guestbook 0.3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url or (2) message parame…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5103
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294407
|
- |
|
dariusz_handzlik
|
vertrigoserv
|
Cross-site scripting (XSS) vulnerability in inc/extensions.php in VertrigoServ 2.25 allows remote attackers to inject arbitrary web script or HTML via the ext parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5102
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294408
|
- |
|
jextensions
|
je_poll_component
|
SQL injection vulnerability in the JExtensions JE Poll component before 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-5101
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294409
|
- |
|
luizpicanco
|
hserver
|
Directory traversal vulnerability in HServer 0.1.1 allows remote attackers to read arbitrary files via a (1) ..%5c (dot dot encoded backslash) or (2) %2e%2e%5c (encoded dot dot backslash) in the PATH…
|
CWE-22
Path Traversal
|
CVE-2012-5100
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294410
|
- |
|
phpb2b
|
phpb2b
|
Cross-site scripting (XSS) vulnerability in list.php in PHPB2B 4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the q parameter in a search action.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5099
|
2024-11-21 10:44 |
2012-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
