|
310541
|
- |
|
runcms
|
runcms
|
Cross-site scripting (XSS) vulnerability in modules/headlines/magpierss/scripts/magpie_debug.php in RunCms 2.1, when the Headlines module is enabled, allows remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2852
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310542
|
- |
|
ordasoft
|
com_booklibrary
|
SQL injection vulnerability in the BookLibrary From Same Author (com_booklibrary) module 1.5 and possibly earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id para…
|
CWE-89
SQL Injection
|
CVE-2010-2851
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310543
|
- |
|
nusoftware
|
nubuilder
|
Directory traversal vulnerability in productionnu2/fileuploader.php in nuBuilder 10.04.20, and possibly other versions before 10.07.12, allows remote attackers to include and execute arbitrary local …
|
CWE-22
Path Traversal
|
CVE-2010-2850
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310544
|
- |
|
nusoftware
|
nubuilder
|
Cross-site scripting (XSS) vulnerability in productionnu2/nuedit.php in nuBuilder 10.04.20, and possibly other versions before 10.07.12, allows remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2849
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310545
|
- |
|
gonzalo_maser
|
com_artforms
|
Directory traversal vulnerability in assets/captcha/includes/alikon/playcode.php in the InterJoomla ArtForms (com_artforms) component 2.1b7.2 RC2 for Joomla! allows remote attackers to read arbitrary…
|
CWE-22
Path Traversal
|
CVE-2010-2848
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310546
|
- |
|
gonzalo_maser
|
com_artforms
|
Multiple SQL injection vulnerabilities in the InterJoomla ArtForms (com_artforms) component 2.1b7.2 RC2 for Joomla! allow remote attackers to execute arbitrary SQL commands via the viewform parameter…
|
CWE-89
SQL Injection
|
CVE-2010-2847
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310547
|
- |
|
gonzalo_maser
|
com_artforms
|
Cross-site scripting (XSS) vulnerability in the InterJoomla ArtForms (com_artforms) component 2.1b7.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the afmsg para…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2846
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310548
|
- |
|
schlu.net
|
com_quickfaq
|
SQL injection vulnerability in the QuickFAQ (com_quickfaq) component 1.0.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a category action to index…
|
CWE-89
SQL Injection
|
CVE-2010-2845
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310549
|
- |
|
newanz
|
newsoffice
|
Cross-site scripting (XSS) vulnerability in news_show.php in Newanz NewsOffice 2.0.18 allows remote attackers to inject arbitrary web script or HTML via the n-cat parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2844
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310550
|
7.8 |
HIGH
Local
|
siemens
|
simatic_wincc
simatic_pcs_7
|
Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end database and gain privileges, as demonstrated in the wild in July 2010 by the St…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2010-2772
|
2024-11-21 10:17 |
2010-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
