|
305501
|
- |
|
danieljamesscott
|
com_music
|
Directory traversal vulnerability in the Music Manager component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the cid p…
|
CWE-22
Path Traversal
|
CVE-2010-2857
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305502
|
- |
|
oscss
|
oscss
|
Cross-site scripting (XSS) vulnerability in admin/currencies.php in osCSS 1.2.2, and probably earlier versions, allows remote attackers to inject arbitrary web script or HTML via the page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2856
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305503
|
- |
|
jared_meeker
|
event_horizon
|
Multiple SQL injection vulnerabilities in modfile.php in Event Horizon (EVH) 1.1.10, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) YourEmail …
|
CWE-89
SQL Injection
|
CVE-2010-2855
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305504
|
- |
|
jared_meeker
|
event_horizon
|
Multiple cross-site scripting (XSS) vulnerabilities in modfile.php in Event Horizon (EVH) 1.1.10, when magic_quotes_gpc is disabled, allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2010-2854
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305505
|
- |
|
iscripts
|
visualcaster
|
SQL injection vulnerability in flashPlayer/playVideo.php in iScripts VisualCaster allows remote attackers to execute arbitrary SQL commands via the product_id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2853
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305506
|
- |
|
runcms
|
runcms
|
Cross-site scripting (XSS) vulnerability in modules/headlines/magpierss/scripts/magpie_debug.php in RunCms 2.1, when the Headlines module is enabled, allows remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2852
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305507
|
- |
|
ordasoft
|
com_booklibrary
|
SQL injection vulnerability in the BookLibrary From Same Author (com_booklibrary) module 1.5 and possibly earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id para…
|
CWE-89
SQL Injection
|
CVE-2010-2851
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305508
|
- |
|
nusoftware
|
nubuilder
|
Directory traversal vulnerability in productionnu2/fileuploader.php in nuBuilder 10.04.20, and possibly other versions before 10.07.12, allows remote attackers to include and execute arbitrary local …
|
CWE-22
Path Traversal
|
CVE-2010-2850
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305509
|
- |
|
nusoftware
|
nubuilder
|
Cross-site scripting (XSS) vulnerability in productionnu2/nuedit.php in nuBuilder 10.04.20, and possibly other versions before 10.07.12, allows remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2849
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305510
|
- |
|
gonzalo_maser
|
com_artforms
|
Directory traversal vulnerability in assets/captcha/includes/alikon/playcode.php in the InterJoomla ArtForms (com_artforms) component 2.1b7.2 RC2 for Joomla! allows remote attackers to read arbitrary…
|
CWE-22
Path Traversal
|
CVE-2010-2848
|
2024-11-21 10:17 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
