|
305301
|
- |
|
e-xoopport
|
samsara
|
SQL injection vulnerability in modules/sections/index.php in E-Xoopport Samsara 3.1 and earlier, when the Tutorial module is enabled, allows remote attackers to execute arbitrary SQL commands via the…
|
CWE-89
SQL Injection
|
CVE-2010-3467
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305302
|
- |
|
netartmedia
|
iboutique.mall
|
Cross-site scripting (XSS) vulnerability in index.php in the hosted_signup module in NetArt Media iBoutique.MALL 1.2 allows remote attackers to inject arbitrary web script or HTML via the tmpl parame…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3466
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305303
|
- |
|
ecommercesoft
|
xse_shopping_cart
|
Multiple cross-site scripting (XSS) vulnerabilities in XSE Shopping Cart 1.5.2.1 and 1.5.3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to Default.aspx and…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3465
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305304
|
- |
|
santafox
|
santafox
|
Cross-site request forgery (CSRF) vulnerability in admin/manager_users.class.php in SantaFox 2.02, and possibly earlier, allows remote attackers to hijack the authentication of administrators for req…
|
CWE-352
Origin Validation Error
|
CVE-2010-3464
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305305
|
- |
|
santafox
|
santafox
|
Cross-site scripting (XSS) vulnerability in modules/search/search.class.php in SantaFox 2.02, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the search param…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3463
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305306
|
- |
|
mollify
|
mollify
|
Cross-site scripting (XSS) vulnerability in backend/plugin/Registration/index.php in Mollify 1.6, 1.6.5.5, and possibly other versions allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3462
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305307
|
- |
|
endonesia
|
endonesia
|
SQL injection vulnerability in the Publisher module in eNdonesia 8.4 allows remote attackers to execute arbitrary SQL commands via the artid parameter in a printarticle action to mod.php, a different…
|
CWE-89
SQL Injection
|
CVE-2010-3461
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305308
|
- |
|
gecad
|
axigen_mail_server
|
Directory traversal vulnerability in the HTTP interface in AXIGEN Mail Server 7.4.1 for Windows allows remote attackers to read arbitrary files via a %5C (encoded backslash) in the URL.
|
CWE-22
Path Traversal
|
CVE-2010-3460
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305309
|
- |
|
gecad
|
axigen_mail_server
|
Cross-site scripting (XSS) vulnerability in the Ajax WebMail interface in AXIGEN Mail Server before 7.4.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3459
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305310
|
- |
|
getsymphony
|
symphony
|
SQL injection vulnerability in lib/toolkit/events/event.section.php in Symphony CMS 2.0.7 and 2.1.1 allows remote attackers to execute arbitrary SQL commands via the send-email[recipient] parameter t…
|
CWE-89
SQL Injection
|
CVE-2010-3458
|
2024-11-21 10:18 |
2010-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
