|
309221
|
- |
|
intermesh
|
group-office
|
SQL injection vulnerability in modules/notes/json.php in Intermesh Group-Office 3.5.9 allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a category action.
|
CWE-89
SQL Injection
|
CVE-2010-3428
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309222
|
- |
|
open-classifieds
|
open_classifieds
|
Multiple cross-site scripting (XSS) vulnerabilities in Open Classifieds 1.7.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) desc, (2) price, (3) title, and (4) place par…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3427
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309223
|
- |
|
4you-studio
|
com_jphone
|
Directory traversal vulnerability in jphone.php in the JPhone (com_jphone) component 1.0 Alpha 3 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in…
|
CWE-22
Path Traversal
|
CVE-2010-3426
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309224
|
- |
|
smartertools
|
smarterstats
|
Cross-site scripting (XSS) vulnerability in UserControls/Popups/frmHelp.aspx in SmarterStats 5.3, 5.3.3819, and possibly other 5.3 versions, allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2010-3425
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309225
|
- |
|
invisioncommunity
|
invision_power_board
|
Cross-site scripting (XSS) vulnerability in admin/sources/classes/bbcode/custom/defaults.php in Invision Power Board (IP.Board) 3.1.2 allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3424
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309226
|
- |
|
freka
|
yr_verdata
|
SQL injection vulnerability in the Yr Weatherdata module for Drupal 6.x before 6.x-1.6 allows remote attackers to execute arbitrary SQL commands via the sorting method.
|
CWE-89
SQL Injection
|
CVE-2010-3423
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309227
|
- |
|
solventus
|
com_jgen
|
SQL injection vulnerability in the JGen (com_jgen) component 0.9.33 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-3422
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309228
|
- |
|
productcart
|
productcart
|
Cross-site scripting (XSS) vulnerability in AffiliateLogin.asp in ProductCart 3, 4.1 SP1, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the redirectUr…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3421
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309229
|
- |
|
webassist
|
powerstore
|
Cross-site scripting (XSS) vulnerability in Products_Results.php in PowerStore 3.0 allows remote attackers to inject arbitrary web script or HTML via the totalRows_WADAProducts parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3420
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309230
|
- |
|
haudenschilt
|
family_connections_cms
|
Multiple PHP remote file inclusion vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 2.2.3 allow remote attackers to execute arbitrary PHP code via a URL in the current_user_id parameter …
|
CWE-94
Code Injection
|
CVE-2010-3419
|
2024-11-21 10:18 |
2010-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
