|
286961
|
- |
|
whmcs
|
group_pay
|
SQL injection vulnerability in the gp_LoadUserFromHash function in functions_hash.php in the Group Pay module 1.5 and earlier for WHMCS allows remote attackers to execute arbitrary SQL commands via t…
|
CWE-89
SQL Injection
|
CVE-2013-3536
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286962
|
- |
|
themelogik
|
cmslogik
|
Multiple cross-site scripting (XSS) vulnerabilities in CMSLogik 1.2.0 and 1.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) admin_email, (2) header_title, (3) site_title…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3535
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286963
|
- |
|
algisinfo
|
aicontactsafe
|
Cross-site scripting (XSS) vulnerability in the aiContactSafe component before 2.0.21 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3534
|
2024-11-21 10:53 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286964
|
- |
|
virtualaccess
|
virtual_access_monitor
|
Multiple SQL injection vulnerabilities in Virtual Access Monitor 3.10.17 and earlier allow attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2013-3533
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286965
|
- |
|
webdorado
|
spider_video_player
|
SQL injection vulnerability in settings.php in the Web Dorado Spider Video Player plugin 2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the theme parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3532
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286966
|
- |
|
radiocms
|
radiocms
|
SQL injection vulnerability in meneger.php in RadioCMS 2.2 allows remote attackers to execute arbitrary SQL commands via the playlist_id parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3531
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286967
|
- |
|
fabricio_zuardi
|
xspf_player_plugin
|
SQL injection vulnerability in playlist.php in the Spiffy XSPF Player plugin 0.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the playlist_id parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3530
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286968
|
- |
|
smartypantsplugins
|
wp-funeral-press
|
Multiple cross-site scripting (XSS) vulnerabilities in user/obits.php in the WP FuneralPress plugin before 1.1.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3529
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286969
|
- |
|
vanillaforums
|
vanilla
|
Unspecified vulnerability in the update check in Vanilla Forums before 2.0.18.8 has unspecified impact and remote attack vectors, related to "object injection."
|
NVD-CWE-noinfo
|
CVE-2013-3528
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286970
|
- |
|
vanillaforums
|
vanilla
|
Multiple SQL injection vulnerabilities in Vanilla Forums before 2.0.18.8 allow remote attackers to execute arbitrary SQL commands via the parameter name in the Form/Email array to (1) entry/signin or…
|
CWE-89
SQL Injection
|
CVE-2013-3527
|
2024-11-21 10:53 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
