|
300061
|
- |
|
ut-files
|
utstats
|
Cross-site scripting (XSS) vulnerability in pages/match_report.php in UTStats Beta 4 and earlier allows remote attackers to inject arbitrary web script or HTML via the mid parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5007
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300062
|
- |
|
emophp
|
emo_realty_manager
|
SQL injection vulnerability in googlemap/index.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the cat1 parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5006
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300063
|
- |
|
rayzz
|
photoz
|
Cross-site scripting (XSS) vulnerability in members/profileCommentsResponse.php in Rayzz Photoz allows remote attackers to inject arbitrary web script or HTML via the profileCommentTextArea parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5005
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300064
|
- |
|
2daybiz
|
polls_script
|
SQL injection vulnerability in searchvote.php in 2daybiz Polls (aka Advanced Poll) Script allows remote attackers to execute arbitrary SQL commands via the category parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5004
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300065
|
- |
|
joe_pieruccini
|
mclogin_system
|
SQL injection vulnerability in login/login_index.php in MCLogin System 1.1 and 1.2 allows remote attackers to execute arbitrary SQL commands via the myusername parameter (aka Username field) in a do_…
|
CWE-89
SQL Injection
|
CVE-2010-5000
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300066
|
- |
|
maulana_al_matien
|
ardeacore_php_framework
|
PHP remote file inclusion vulnerability in ardeaCore/lib/core/ardeaInit.php in ardeaCore PHP Framework 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the pathForArdeaCore para…
|
CWE-94
Code Injection
|
CVE-2010-4998
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300067
|
- |
|
olykit
|
swoopo_clone_2010
|
SQL injection vulnerability in index.php in OlyKit Swoopo Clone 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter in a product action.
|
CWE-89
SQL Injection
|
CVE-2010-4997
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300068
|
- |
|
videowhisper
|
php_2_way_video_chat
|
Cross-site scripting (XSS) vulnerability in VideoWhisper PHP 2 Way Video Chat component for Joomla! allows remote attackers to inject arbitrary web script or HTML via the r parameter to index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4971
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300069
|
- |
|
autartica
|
com_autartimonial
|
SQL injection vulnerability in the AutarTimonial (com_autartimonial) component 1.0.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the limit parameter in an autartimonial …
|
CWE-89
SQL Injection
|
CVE-2010-5003
|
2024-11-21 10:22 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300070
|
- |
|
exponentcms
|
exponent_cms
|
Cross-site scripting (XSS) vulnerability in modules/slideshowmodule/slideshow.js.php in Exponent CMS 0.97.0 allows remote attackers to inject arbitrary web script or HTML via the u parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5002
|
2024-11-21 10:22 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
