|
300381
|
- |
|
smarty
|
smarty
|
Unspecified vulnerability in the math plugin in Smarty before 3.0.0 RC1 has unknown impact and remote attack vectors. NOTE: this might overlap CVE-2009-1669.
|
NVD-CWE-noinfo
|
CVE-2010-4726
|
2024-11-21 10:21 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300382
|
- |
|
smarty
|
smarty
|
Smarty before 3.0.0 RC3 does not properly handle an on value of the asp_tags option in the php.ini file, which has unspecified impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2010-4725
|
2024-11-21 10:21 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300383
|
- |
|
smarty
|
smarty
|
Multiple unspecified vulnerabilities in the parser implementation in Smarty before 3.0.0 RC3 have unknown impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2010-4724
|
2024-11-21 10:21 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300384
|
- |
|
smarty
|
smarty
|
Smarty before 3.0.0, when security is enabled, does not prevent access to the (1) dynamic and (2) private object members of an assigned object, which has unspecified impact and remote attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4723
|
2024-11-21 10:21 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300385
|
- |
|
smarty
|
smarty
|
Unspecified vulnerability in the fetch plugin in Smarty before 3.0.2 has unknown impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2010-4722
|
2024-11-21 10:21 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300386
|
- |
|
proftpd
|
proftpd
|
Heap-based buffer overflow in the sql_prepare_where function (contrib/mod_sql.c) in ProFTPD before 1.3.3d, when mod_sql is enabled, allows remote attackers to cause a denial of service (crash) and po…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4652
|
2024-11-21 10:21 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300387
|
- |
|
mhproducts
|
immo_makler
|
SQL injection vulnerability in news.php in Immo Makler allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4721
|
2024-11-21 10:21 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300388
|
- |
|
harmistechnology
|
com_jeauto
|
SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component before 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to the v…
|
CWE-89
SQL Injection
|
CVE-2010-4720
|
2024-11-21 10:21 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300389
|
- |
|
fxwebdesign
|
com_jradio
|
Directory traversal vulnerability in JRadio (com_jradio) component before 1.5.1 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in the controller paramet…
|
CWE-22
Path Traversal
|
CVE-2010-4719
|
2024-11-21 10:21 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300390
|
- |
|
lyften
|
com_lyftenbloggie
|
Multiple cross-site scripting (XSS) vulnerabilities in the Lyftenbloggie (com_lyftenbloggie) component 1.1.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) tag …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4718
|
2024-11-21 10:21 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
