|
292821
|
- |
|
wesley_destailleur
|
todoo_forum
|
Multiple cross-site scripting (XSS) vulnerabilities in todooforum.php in Todoo Forum 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id_post or (2) pg parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3538
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292822
|
- |
|
wesley_destailleur
|
todoo_forum
|
Multiple SQL injection vulnerabilities in todooforum.php in Todoo Forum 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) id_post or (2) pg parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3537
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292823
|
- |
|
whmcs
|
group_pay
|
SQL injection vulnerability in the gp_LoadUserFromHash function in functions_hash.php in the Group Pay module 1.5 and earlier for WHMCS allows remote attackers to execute arbitrary SQL commands via t…
|
CWE-89
SQL Injection
|
CVE-2013-3536
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292824
|
- |
|
themelogik
|
cmslogik
|
Multiple cross-site scripting (XSS) vulnerabilities in CMSLogik 1.2.0 and 1.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) admin_email, (2) header_title, (3) site_title…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3535
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292825
|
- |
|
algisinfo
|
aicontactsafe
|
Cross-site scripting (XSS) vulnerability in the aiContactSafe component before 2.0.21 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3534
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292826
|
- |
|
virtualaccess
|
virtual_access_monitor
|
Multiple SQL injection vulnerabilities in Virtual Access Monitor 3.10.17 and earlier allow attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-3533
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292827
|
- |
|
webdorado
|
spider_video_player
|
SQL injection vulnerability in settings.php in the Web Dorado Spider Video Player plugin 2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the theme parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3532
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292828
|
- |
|
radiocms
|
radiocms
|
SQL injection vulnerability in meneger.php in RadioCMS 2.2 allows remote attackers to execute arbitrary SQL commands via the playlist_id parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3531
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292829
|
- |
|
fabricio_zuardi
|
xspf_player_plugin
|
SQL injection vulnerability in playlist.php in the Spiffy XSPF Player plugin 0.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the playlist_id parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3530
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292830
|
- |
|
smartypantsplugins
|
wp-funeral-press
|
Multiple cross-site scripting (XSS) vulnerabilities in user/obits.php in the WP FuneralPress plugin before 1.1.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3529
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
