|
285591
|
- |
|
topgames
|
top_games_script
|
SQL injection vulnerability in play.php in Top Games Script 1.2 allows remote attackers to execute arbitrary SQL commands via the gid parameter.
|
CWE-89
SQL Injection
|
CVE-2013-4953
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285592
|
- |
|
elemata
|
elemata_cms
|
SQL injection vulnerability in functions/global.php in Elemata CMS RC 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2013-4952
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285593
|
- |
|
mintboard
|
mintboard
|
Multiple cross-site scripting (XSS) vulnerabilities in Mintboard 0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) pass parameter in views/login.php or (3) nam…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4951
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285594
|
- |
|
machform
|
machform
|
Cross-site scripting (XSS) vulnerability in view.php in Machform 2 allows remote attackers to inject arbitrary web script or HTML via the element_2 parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4950
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285595
|
- |
|
machform
|
machform
|
Unrestricted file upload vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in t…
|
NVD-CWE-Other
|
CVE-2013-4949
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285596
|
- |
|
machform
|
machform
|
SQL injection vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary SQL commands via the element_2 parameter.
|
CWE-89
SQL Injection
|
CVE-2013-4948
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285597
|
- |
|
sawmill
|
sawmill
|
Unspecified vulnerability in the update and build database page in Sawmill before 8.6.3 allows remote attackers to have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2013-4947
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285598
|
- |
|
bmc
|
service_desk_express
|
Multiple cross-site scripting (XSS) vulnerabilities in BMC Service Desk Express (SDE) 10.2.1.95 allow remote attackers to inject arbitrary web script or HTML via the (1) SelTab parameter to QV_admin.…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4946
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285599
|
- |
|
bmc
|
service_desk_express
|
Multiple SQL injection vulnerabilities in BMC Service Desk Express (SDE) 10.2.1.95 allow remote attackers to execute arbitrary SQL commands via the (1) ASPSESSIONIDASSRATTQ, (2) TABLE_WIDGET_1, (3) T…
|
CWE-89
SQL Injection
|
CVE-2013-4945
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285600
|
- |
|
fusedpress
|
buddypress-extended-frienship-request
|
Cross-site scripting (XSS) vulnerability in the BuddyPress Extended Friendship Request plugin before 1.0.2 for WordPress, when the "Friend Connections" component is enabled, allows remote attackers t…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4944
|
2024-11-21 10:56 |
2013-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
