|
299081
|
- |
|
raphael_zschorsch
|
commentsbe
|
SQL injection vulnerability in the Commenting system Backend Module (commentsbe) extension 0.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vector…
|
CWE-89
SQL Injection
|
CVE-2010-4887
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299082
|
- |
|
peter_proell
|
tweetbutton
|
Cross-site scripting (XSS) vulnerability in the "official twitter tweet button for your page" (tweetbutton) extension before 1.0.5 for TYPO3 allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4886
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299083
|
- |
|
peter_proell
|
xing
|
Cross-site scripting (XSS) vulnerability in the XING Button (xing) extension before 1.0.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4885
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299084
|
- |
|
hinnendahl
|
gaestebuch
|
PHP remote file inclusion vulnerability in guestbook/gbook.php in Gaestebuch 1.2 allows remote attackers to execute arbitrary PHP code via a URL in the script_pfad parameter.
|
CWE-94
Code Injection
|
CVE-2010-4884
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299085
|
- |
|
modx
|
revolution
|
Cross-site scripting (XSS) vulnerability in manager/index.php in MODx Revolution 2.0.2-pl allows remote attackers to inject arbitrary web script or HTML via the modhash parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4883
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299086
|
- |
|
ventics
|
auto_cms
|
Cross-site scripting (XSS) vulnerability in autocms.php in Auto CMS 1.6 allows remote attackers to inject arbitrary web script or HTML via the sitetitle parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4882
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299087
|
- |
|
apphp
|
apphp_calendar
|
Multiple cross-site request forgery (CSRF) vulnerabilities in calendar.class.php in ApPHP Calendar (ApPHP CAL) allow remote attackers to hijack the authentication of unspecified victims for requests …
|
CWE-352
Origin Validation Error
|
CVE-2010-4881
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299088
|
- |
|
apphp
|
apphp_calendar
|
Multiple cross-site scripting (XSS) vulnerabilities in calendar.class.php in ApPHP Calendar (ApPHP CAL) allow remote attackers to inject arbitrary web script or HTML via the (1) category_name, (2) ca…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4880
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299089
|
- |
|
digitaljunkies
|
dompdf
|
PHP remote file inclusion vulnerability in dompdf.php in dompdf 0.6.0 beta1 allows remote attackers to execute arbitrary PHP code via a URL in the input_file parameter.
|
CWE-94
Code Injection
|
CVE-2010-4879
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299090
|
- |
|
hinnendahl
|
kontakt_formular
|
PHP remote file inclusion vulnerability in formmailer.php in Kontakt Formular 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the script_pfad parameter.
|
CWE-94
Code Injection
|
CVE-2010-4878
|
2024-11-21 10:21 |
2011-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
