|
299031
|
- |
|
mechbunny
|
paysitereviewcms
|
Multiple cross-site scripting (XSS) vulnerabilities in PaysiteReviewCMS 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) q parameter to search.php or the (2) image parame…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4909
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299032
|
- |
|
virtuenetz
|
virtue_shopping_mall
|
SQL injection vulnerability in detail.php in Virtue Shopping Mall allows remote attackers to execute arbitrary SQL commands via the prodid parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4908
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299033
|
- |
|
zenphoto
|
zenphoto
|
Cross-site scripting (XSS) vulnerability in zp-core/admin.php in Zenphoto 1.3 allows remote attackers to inject arbitrary web script or HTML via the user parameter. NOTE: the from parameter is alrea…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4907
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299034
|
- |
|
zenphoto
|
zenphoto
|
SQL injection vulnerability in zp-core/full-image.php in Zenphoto 1.3 and 1.3.1.2 allows remote attackers to execute arbitrary SQL commands via the a parameter. NOTE: some of these details are obtai…
|
CWE-89
SQL Injection
|
CVE-2010-4906
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299035
|
- |
|
softbizscripts
|
article_directory_script
|
SQL injection vulnerability in article_details.php in Softbiz Article Directory Script allows remote attackers to execute arbitrary SQL commands via the sbiz_id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4905
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299036
|
- |
|
simon_philips
|
com_aardvertiser
|
SQL injection vulnerability in the Aardvertiser (com_aardvertiser) component 2.1 and 2.1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat_name parameter in a view a…
|
CWE-89
SQL Injection
|
CVE-2010-4904
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299037
|
- |
|
cubecart
|
cubecart
|
SQL injection vulnerability in index.php in CubeCart 4.3.3 allows remote attackers to execute arbitrary SQL commands via the searchStr parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4903
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299038
|
- |
|
joomla-clantools
|
clantools
|
Multiple SQL injection vulnerabilities in the Clantools (com_clantools) component 1.2.3 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) squad or (2) showgame paramete…
|
CWE-89
SQL Injection
|
CVE-2010-4902
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299039
|
- |
|
squiz
|
mysource_matrix
|
Multiple cross-site scripting (XSS) vulnerabilities in char_map.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the (1) height or (2) width parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4901
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299040
|
- |
|
webmanager-pro
|
cms_webmanager-pro
|
Open redirect vulnerability in c.php in CMS WebManager-Pro 8.1 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.
|
CWE-20
Improper Input Validation
|
CVE-2010-4900
|
2024-11-21 10:22 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
