|
289561
|
- |
|
possesports
|
posse_softball_director_cms
|
SQL injection vulnerability in team.php in Posse Softball Director CMS allows remote attackers to execute arbitrary SQL commands via the idteam parameter.
|
CWE-89
SQL Injection
|
CVE-2012-5291
|
2024-11-21 10:44 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289562
|
- |
|
wcs4web
|
easywebrealestate
|
Multiple SQL injection vulnerabilities in EasyWebRealEstate allow remote attackers to execute arbitrary SQL commands via the (1) lstid parameter to listings.php or (2) infoid parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2012-5290
|
2024-11-21 10:44 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289563
|
- |
|
plogger
|
plogger
|
Multiple SQL injection vulnerabilities in Plogger 1.0 RC1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) index.php or (2) gallery.php.
|
CWE-89
SQL Injection
|
CVE-2012-5289
|
2024-11-21 10:44 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289564
|
- |
|
accomplishtechnology
|
phpmydirectory
|
SQL injection vulnerability in page.php in phpMyDirectory 1.3.3 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2012-5288
|
2024-11-21 10:44 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289565
|
- |
|
ocportal
|
ocportal
|
Open redirect vulnerability in index.php in ocPortal before 7.1.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter.
|
CWE-20
Improper Input Validation
|
CVE-2012-5234
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289566
|
- |
|
luke_herrington
|
stickynote
|
Cross-site scripting (XSS) vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote authenticated users with edit stickynotes privileges to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5233
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289567
|
- |
|
mediafire
|
mod_quick_form
|
Cross-site scripting (XSS) vulnerability in the Quickl Form component for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5232
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289568
|
- |
|
jessgramp
|
minicms
|
miniCMS 1.0 and 2.0 allows remote attackers to execute arbitrary PHP code via a crafted (1) pagename or (2) area variable containing an executable extension, which is not properly handled by (a) upda…
|
CWE-94
Code Injection
|
CVE-2012-5231
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289569
|
- |
|
harmistechnology
|
com_jesubmit
|
Unspecified vulnerability in the JE Story Submit (com_jesubmit) component before 1.9 for Joomla! has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5230
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289570
|
- |
|
wordpress
|
slideshow_gallery2
|
Cross-site scripting (XSS) vulnerability in css/gallery-css.php in the Slideshow Gallery2 plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the border parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5229
|
2024-11-21 10:44 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
