|
304561
|
- |
|
smartertools
|
smarterstats
|
Cross-site scripting (XSS) vulnerability in UserControls/Popups/frmHelp.aspx in SmarterStats 5.3, 5.3.3819, and possibly other 5.3 versions, allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2010-3425
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304562
|
- |
|
invisioncommunity
|
invision_power_board
|
Cross-site scripting (XSS) vulnerability in admin/sources/classes/bbcode/custom/defaults.php in Invision Power Board (IP.Board) 3.1.2 allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3424
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304563
|
- |
|
freka
|
yr_verdata
|
SQL injection vulnerability in the Yr Weatherdata module for Drupal 6.x before 6.x-1.6 allows remote attackers to execute arbitrary SQL commands via the sorting method.
|
CWE-89
SQL Injection
|
CVE-2010-3423
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304564
|
- |
|
solventus
|
com_jgen
|
SQL injection vulnerability in the JGen (com_jgen) component 0.9.33 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-3422
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304565
|
- |
|
productcart
|
productcart
|
Cross-site scripting (XSS) vulnerability in AffiliateLogin.asp in ProductCart 3, 4.1 SP1, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the redirectUr…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3421
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304566
|
- |
|
webassist
|
powerstore
|
Cross-site scripting (XSS) vulnerability in Products_Results.php in PowerStore 3.0 allows remote attackers to inject arbitrary web script or HTML via the totalRows_WADAProducts parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3420
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304567
|
- |
|
haudenschilt
|
family_connections_cms
|
Multiple PHP remote file inclusion vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 2.2.3 allow remote attackers to execute arbitrary PHP code via a URL in the current_user_id parameter …
|
CWE-94
Code Injection
|
CVE-2010-3419
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304568
|
- |
|
netartmedia
|
car_portal
|
Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media Car Portal 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) car_id parameter to index.php …
|
CWE-79
Cross-site Scripting
|
CVE-2010-3418
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304569
|
- |
|
google
|
chrome
|
Google Chrome before 6.0.472.59 does not prompt the user before granting access to the extension history, which allows attackers to obtain potentially sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2010-3417
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304570
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
Google Chrome before 6.0.472.59 on Linux does not properly implement the Khmer locale, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified othe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3416
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
