|
299311
|
- |
|
eaimproved
|
com_estateagent
|
SQL injection vulnerability in the Estate Agent (com_estateagent) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showEO action to index.php.
|
CWE-89
SQL Injection
|
CVE-2011-4571
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299312
|
- |
|
takeaweb
|
com_timereturns
|
SQL injection vulnerability in the Time Returns (com_timereturns) component 2.0 and possibly earlier versions for Joomla! allows remote attackers to execute arbitrary SQL commands via the id paramete…
|
CWE-89
SQL Injection
|
CVE-2011-4570
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299313
|
- |
|
tom_k
|
forum_userbar_plugin
|
SQL injection vulnerability in userbarsettings.php in the Userbar plugin 2.2 for MyBB Forum allows remote attackers to execute arbitrary SQL commands via the image2 parameter.
|
CWE-89
SQL Injection
|
CVE-2011-4569
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299314
|
- |
|
foliovision
|
fv_wordpress_flowplayer_plugin
|
Cross-site scripting (XSS) vulnerability in view/frontend-head.php in the Flowplayer plugin before 1.2.12 for WordPress allows remote attackers to inject arbitrary web script or HTML via the URI.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4568
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299315
|
- |
|
zen-cart
|
zen_cart
|
Cross-site scripting (XSS) vulnerability in includes/templates/template_default/templates/tpl_gv_send_default.php in Zen Cart before 1.5 allows remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4567
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299316
|
- |
|
php
debian
canonical
|
php
debian_linux
ubuntu_linux
|
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations …
|
CWE-189
Numeric Errors
|
CVE-2011-4566
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299317
|
- |
|
zen-cart
|
zen_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in includes/templates/template_default/common/tpl_header_test_info.php in Zen Cart 1.3.9h, when debugging is enabled, might allow remote attackers …
|
CWE-79
Cross-site Scripting
|
CVE-2011-4547
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299318
|
- |
|
hastymail
|
hastymail2
|
Cross-site scripting (XSS) vulnerability in index.php in Hastymail2 2.1.1 before RC2 allows remote attackers to inject arbitrary web script or HTML via the rs parameter in a mailbox Drafts action.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4541
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299319
|
- |
|
xoops
|
xoops
|
Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.5.1.a, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the (1) text parameter to includ…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4565
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299320
|
- |
|
activedev
|
active_cms
|
Cross-site scripting (XSS) vulnerability in the admin script in Active CMS 1.2 allows remote attackers to inject arbitrary web script or HTML via the mod parameter in a module action.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4564
|
2024-11-21 10:32 |
2011-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
