|
301061
|
- |
|
phpwebscripts
|
easy_banner_free
|
Multiple SQL injection vulnerabilities in member.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via th…
|
CWE-89
SQL Injection
|
CVE-2010-4784
|
2024-11-21 10:21 |
2011-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301062
|
- |
|
phpwebscripts
|
easy_banner_free
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magic_quotes_gpc is disabled, allow remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4783
|
2024-11-21 10:21 |
2011-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301063
|
- |
|
softwebsnepal
|
ananda_real_estate
|
Multiple SQL injection vulnerabilities in list.asp in Softwebs Nepal (aka Ananda Raj Pandey) Ananda Real Estate 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) city, (2) stat…
|
CWE-89
SQL Injection
|
CVE-2010-4782
|
2024-11-21 10:21 |
2011-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301064
|
- |
|
enanocms
|
enano_cms
|
index.php in Enano CMS 1.1.7pl1, and possibly other versions before 1.1.8, 1.0.6pl3, and 1.1.7pl2, allows remote attackers to obtain sensitive information via a crafted title parameter, which reveals…
|
CWE-200
Information Exposure
|
CVE-2010-4781
|
2024-11-21 10:21 |
2011-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301065
|
- |
|
enanocms
|
enano_cms
|
SQL injection vulnerability in the check_banlist function in includes/sessions.php in Enano CMS 1.1.7pl1; 1.0.6pl2; and possibly other versions before 1.1.8, 1.0.6pl3, and 1.1.7pl2 allows remote atta…
|
CWE-89
SQL Injection
|
CVE-2010-4780
|
2024-11-21 10:21 |
2011-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301066
|
- |
|
bravenewcode
|
wptouch
|
Cross-site scripting (XSS) vulnerability in lib/includes/auth.inc.php in the WPtouch plugin 1.9.19.4 and 1.9.20 for WordPress allows remote attackers to inject arbitrary web script or HTML via the wp…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4779
|
2024-11-21 10:21 |
2011-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301067
|
- |
|
horde
|
imp
groupware
|
Multiple cross-site scripting (XSS) vulnerabilities in fetchmailprefs.php in Horde IMP before 4.3.8, and Horde Groupware Webmail Edition before 1.2.7, allow remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4778
|
2024-11-21 10:21 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301068
|
- |
|
realnetworks
|
helix_server
helix_mobile_server
|
Stack-based buffer overflow in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and Helix Mobile Server 12.x, 13.x, and 14.x before 14.2, allows remote attackers to execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4596
|
2024-11-21 10:21 |
2011-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301069
|
- |
|
preprojects
|
pre_online_tests_generator
|
SQL injection vulnerability in takefreestart.php in PreProjects Pre Online Tests Generator Pro allows remote attackers to execute arbitrary SQL commands via the tid2 parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4776
|
2024-11-21 10:21 |
2011-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301070
|
- |
|
nicholas_thompson
|
relevant_content
|
The Relevant Content module 5.x before 5.x-1.4 and 6.x before 6.x-1.5 for Drupal does not properly implement node access logic, which allows remote attackers to discover restricted node titles and re…
|
CWE-20
Improper Input Validation
|
CVE-2010-4775
|
2024-11-21 10:21 |
2011-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
