|
303431
|
- |
|
microsoft
|
sharepoint_services
groove_server
internet_explorer
sharepoint_server
sharepoint_foundation
web_apps
|
The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010, Office SharePoint Server 2007 SP2, …
|
CWE-79
Cross-site Scripting
|
CVE-2010-3324
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303432
|
- |
|
intermesh
|
group-office
|
SQL injection vulnerability in modules/notes/json.php in Intermesh Group-Office 3.5.9 allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a category action.
|
CWE-89
SQL Injection
|
CVE-2010-3428
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303433
|
- |
|
open-classifieds
|
open_classifieds
|
Multiple cross-site scripting (XSS) vulnerabilities in Open Classifieds 1.7.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) desc, (2) price, (3) title, and (4) place par…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3427
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303434
|
- |
|
4you-studio
|
com_jphone
|
Directory traversal vulnerability in jphone.php in the JPhone (com_jphone) component 1.0 Alpha 3 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in…
|
CWE-22
Path Traversal
|
CVE-2010-3426
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303435
|
- |
|
smartertools
|
smarterstats
|
Cross-site scripting (XSS) vulnerability in UserControls/Popups/frmHelp.aspx in SmarterStats 5.3, 5.3.3819, and possibly other 5.3 versions, allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2010-3425
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303436
|
- |
|
invisioncommunity
|
invision_power_board
|
Cross-site scripting (XSS) vulnerability in admin/sources/classes/bbcode/custom/defaults.php in Invision Power Board (IP.Board) 3.1.2 allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3424
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303437
|
- |
|
freka
|
yr_verdata
|
SQL injection vulnerability in the Yr Weatherdata module for Drupal 6.x before 6.x-1.6 allows remote attackers to execute arbitrary SQL commands via the sorting method.
|
CWE-89
SQL Injection
|
CVE-2010-3423
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303438
|
- |
|
solventus
|
com_jgen
|
SQL injection vulnerability in the JGen (com_jgen) component 0.9.33 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-3422
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303439
|
- |
|
productcart
|
productcart
|
Cross-site scripting (XSS) vulnerability in AffiliateLogin.asp in ProductCart 3, 4.1 SP1, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the redirectUr…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3421
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303440
|
- |
|
webassist
|
powerstore
|
Cross-site scripting (XSS) vulnerability in Products_Results.php in PowerStore 3.0 allows remote attackers to inject arbitrary web script or HTML via the totalRows_WADAProducts parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3420
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
