|
303671
|
- |
|
2daybiz
|
online_classified_script
|
Cross-site scripting (XSS) vulnerability in products/classified/headersearch.php in 2daybiz Online Classified Script allows remote attackers to inject arbitrary web script or HTML via the sid paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5018
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303672
|
- |
|
eliteladders
|
elite_gaming_ladders
|
SQL injection vulnerability in stats.php in Elite Gaming Ladders 3.0 allows remote attackers to execute arbitrary SQL commands via the account parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5017
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303673
|
- |
|
eliteladders
|
elite_gaming_ladders
|
SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the match parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5016
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303674
|
- |
|
2daybiz
|
network_community_script
|
SQL injection vulnerability in view_photo.php in 2daybiz Network Community Script allows remote attackers to execute arbitrary SQL commands via the alb parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5015
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303675
|
- |
|
eliteladders
|
elite_gaming_ladders
|
SQL injection vulnerability in standings.php in Elite Gaming Ladders 3.5 allows remote attackers to execute arbitrary SQL commands via the ladder[id] parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5014
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303676
|
- |
|
mckenziecreations
|
virtual_real_estate_manager
|
SQL injection vulnerability in listing_detail.asp in Mckenzie Creations Virtual Real Estate Manager (VRM) 3.5 allows remote attackers to execute arbitrary SQL commands via the Lid parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5013
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303677
|
- |
|
david_noguera_gutierrez
|
dalogin
|
SQL injection vulnerability in new.php in DaLogin 2.2 and 2.2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third pa…
|
CWE-89
SQL Injection
|
CVE-2010-5012
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303678
|
- |
|
schoolmation
|
schoolmation
|
SQL injection vulnerability in schoolmv2/html/studentmain.php in SchoolMation 2.3 allows remote attackers to execute arbitrary SQL commands via the session parameter.
|
CWE-89
SQL Injection
|
CVE-2010-5011
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303679
|
- |
|
schoolmation
|
schoolmation
|
Cross-site scripting (XSS) vulnerability in schoolmv2/html/studentmain.php in SchoolMation 2.3 allows remote attackers to inject arbitrary web script or HTML via the session parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5010
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303680
|
- |
|
ut-files
|
utstats
|
SQL injection vulnerability in index.php in UTStats Beta 4 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter in a matchp action.
|
CWE-89
SQL Injection
|
CVE-2010-5009
|
2024-11-21 10:22 |
2011-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
