|
299351
|
- |
|
intendance
|
mysource_matrix
|
SQL injection vulnerability in index.php in MySource Matrix allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4639
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299352
|
- |
|
iptechinside
|
com_jquarks4s
|
SQL injection vulnerability in the submitSurvey function in controller.php in JQuarks4s (com_jquarks4s) component 1.0.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to exec…
|
CWE-89
SQL Injection
|
CVE-2010-4638
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299353
|
- |
|
finalcut
|
feedlist
|
Cross-site scripting (XSS) vulnerability in feedlist/handler_image.php in the FeedList plugin 2.61.01 for WordPress allows remote attackers to inject arbitrary web script or HTML via the i parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4637
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299354
|
- |
|
site2nite
|
business_e-listings
|
SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4636
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299355
|
- |
|
site2nite
|
vacation_rental_listings
|
SQL injection vulnerability in detail.asp in Site2Nite Vacation Rental (VRBO) Listings allows remote attackers to execute arbitrary SQL commands via the ID parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4635
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299356
|
- |
|
osticket
|
osticket
|
Directory traversal vulnerability in osTicket 1.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to module.php, a different vector than CVE-2005-1439. NOTE:…
|
CWE-22
Path Traversal
|
CVE-2010-4634
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299357
|
- |
|
sumeffect
|
digishop
|
SQL injection vulnerability in cart.php in digiSHOP 2.0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vulnerability than CVE-2005-4614.1.
|
CWE-89
SQL Injection
|
CVE-2010-4633
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299358
|
- |
|
pilotcart
|
pilot_cart
|
Multiple SQL injection vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to execute arbitrary SQL commands via the (1) article parameter to kb.asp, (2) specific parameter to cart.asp, …
|
CWE-89
SQL Injection
|
CVE-2010-4632
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299359
|
- |
|
pilotcart
|
pilot_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) countrycode parameter to contact.asp, USERNAME …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4631
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299360
|
- |
|
fubra
|
wp-survey-and-quiz-tool
|
Cross-site scripting (XSS) vulnerability in pages/admin/surveys/create.php in the WP Survey And Quiz Tool plugin 1.2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4630
|
2024-11-21 10:21 |
2010-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
