|
300411
|
- |
|
hotwebscripts
|
hotweb_rentals
|
SQL injection vulnerability in default.asp in HotWebScripts HotWeb Rentals allows remote attackers to execute arbitrary SQL commands via the PageId parameter. NOTE: the provenance of this informatio…
|
CWE-89
SQL Injection
|
CVE-2010-4703
|
2024-11-21 10:21 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300412
|
- |
|
fxwebdesign
|
com_jradio
|
SQL injection vulnerability in JRadio (com_jradio) component before 1.5.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-4702
|
2024-11-21 10:21 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300413
|
- |
|
microsoft
|
windows_2003_server
windows_xp
windows_7
|
Heap-based buffer overflow in the CDrawPoly::Serialize function in fxscover.exe in Microsoft Windows Fax Services Cover Page Editor 5.2 r2 in Windows XP Professional SP3, Server 2003 R2 Enterprise Ed…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4701
|
2024-11-21 10:21 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300414
|
- |
|
oracle
|
sun_convergence
|
Unspecified vulnerability in Oracle Sun Convergence 1.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail.
|
NVD-CWE-noinfo
|
CVE-2010-4464
|
2024-11-21 10:21 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300415
|
- |
|
php
|
php
|
The set_magic_quotes_runtime function in PHP 5.3.2 and 5.3.3, when the MySQLi extension is used, does not properly interact with use of the mysqli_fetch_assoc function, which might make it easier for…
|
CWE-89
SQL Injection
|
CVE-2010-4700
|
2024-11-21 10:21 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300416
|
- |
|
php
|
php
|
The iconv_mime_decode_headers function in the Iconv extension in PHP before 5.3.4 does not properly handle encodings that are unrecognized by the iconv and mbstring (aka Multibyte String) implementat…
|
CWE-189
Numeric Errors
|
CVE-2010-4699
|
2024-11-21 10:21 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300417
|
- |
|
php
|
php
|
Stack-based buffer overflow in the GD extension in PHP before 5.2.15 and 5.3.x before 5.3.4 allows context-dependent attackers to cause a denial of service (application crash) via a large number of a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4698
|
2024-11-21 10:21 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300418
|
- |
|
php
|
php
|
Use-after-free vulnerability in the Zend engine in PHP before 5.2.15 and 5.3.x before 5.3.4 might allow context-dependent attackers to cause a denial of service (heap memory corruption) or have unspe…
|
CWE-399
Resource Management Errors
|
CVE-2010-4697
|
2024-11-21 10:21 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300419
|
- |
|
joomla
|
joomla\!
|
Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 allow remote attackers to execute arbitrary SQL commands via the (1) filter_order or (2) filter_order_Dir parameter in a com_cont…
|
CWE-89
SQL Injection
|
CVE-2010-4696
|
2024-11-21 10:21 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300420
|
- |
|
hastymail
|
hastymail2
|
Cross-site scripting (XSS) vulnerability in Hastymail2 before 1.01 allows remote attackers to inject arbitrary web script or HTML via a crafted background attribute within a cell in a TABLE element, …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4646
|
2024-11-21 10:21 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
