|
305381
|
- |
|
seagullproject.org
|
seagull
|
Multiple PHP remote file inclusion vulnerabilities in Seagull 0.6.7 allow remote attackers to execute arbitrary PHP code via a URL in the includeFile parameter to (1) Config/Container.php and (2) HTM…
|
CWE-94
Code Injection
|
CVE-2010-3209
|
2024-11-21 10:18 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305382
|
- |
|
wiccle
|
wiccle_web_builder
|
Cross-site scripting (XSS) vulnerability in ajax.php in Wiccle Web Builder (WWB) 1.00 and 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the post_text parameter in a site cu…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3208
|
2024-11-21 10:18 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305383
|
- |
|
galeriashqip
|
galeriashqip
|
SQL injection vulnerability in index.php in GaleriaSHQIP 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the album_id parameter. NOTE: some of t…
|
CWE-89
SQL Injection
|
CVE-2010-3207
|
2024-11-21 10:18 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305384
|
- |
|
diy-cms
|
diy-cms
|
Multiple PHP remote file inclusion vulnerabilities in DiY-CMS 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) lang parameter to modules/guestbook/blocks/control.block.ph…
|
CWE-94
Code Injection
|
CVE-2010-3206
|
2024-11-21 10:18 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305385
|
- |
|
textpattern
|
textpattern
|
PHP remote file inclusion vulnerability in index.php in Textpattern CMS 4.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter.
|
CWE-94
Code Injection
|
CVE-2010-3205
|
2024-11-21 10:18 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305386
|
- |
|
pecio-cms
|
pecio_cms
|
Multiple PHP remote file inclusion vulnerabilities in Pecio CMS 2.0.5 allow remote attackers to execute arbitrary PHP code via a URL in the template parameter to (1) post.php, (2) article.php, (3) bl…
|
CWE-94
Code Injection
|
CVE-2010-3204
|
2024-11-21 10:18 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305387
|
- |
|
xmlswf
|
com_picsell
|
Directory traversal vulnerability in the PicSell (com_picsell) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the dflink parameter in a prevsell dwnfr…
|
CWE-22
Path Traversal
|
CVE-2010-3203
|
2024-11-21 10:18 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305388
|
- |
|
ibm
|
db2
|
IBM DB2 9.7 before FP2 does not perform the expected access control on the monitor administrative views in the SYSIBMADM schema, which allows remote attackers to obtain sensitive information via unsp…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3197
|
2024-11-21 10:18 |
2010-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305389
|
- |
|
ibm
|
db2
|
IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows remote authenticated users to cause a denial of service (loss of privileges) to a view owner by defining a dependent view.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3196
|
2024-11-21 10:18 |
2010-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305390
|
- |
|
ibm
|
db2
|
Unspecified vulnerability in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 on Windows Server 2008 allows attackers to cause a denial of service (trap) via vectors involving "special grou…
|
NVD-CWE-noinfo
|
CVE-2010-3195
|
2024-11-21 10:18 |
2010-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
