|
303981
|
- |
|
atlassian
|
fisheye
|
Multiple cross-site scripting (XSS) vulnerabilities in the user profile feature in Atlassian FishEye before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via (1) snippets in a u…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4822
|
2024-11-21 10:33 |
2011-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303982
|
- |
|
dolibarr
|
dolibarr_erp\/crm
|
Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr 3.1.0 RC and probably earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php, (2) adm…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4814
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303983
|
- |
|
whmcs
|
whmcompletesolution
|
Directory traversal vulnerability in clientarea.php in WHMCompleteSolution (WHMCS) 3.x.x allows remote attackers to read arbitrary files via an invalid action and a ../ (dot dot slash) in the templat…
|
CWE-22
Path Traversal
|
CVE-2011-4813
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303984
|
- |
|
bst
|
bestshoppro
|
Cross-site scripting (XSS) vulnerability in nowosci.php in BestShopPro allows remote attackers to inject arbitrary web script or HTML via the str parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4812
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303985
|
- |
|
bst
|
bestshoppro
|
SQL injection vulnerability in pokaz_podkat.php in BestShopPro allows remote attackers to execute arbitrary SQL commands via the str parameter.
|
CWE-89
SQL Injection
|
CVE-2011-4811
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303986
|
- |
|
whmcs
|
whmcompletesolution
|
Multiple directory traversal vulnerabilities in WHMCompleteSolution (WHMCS) 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to (1) submitticket.php and (2) d…
|
CWE-22
Path Traversal
|
CVE-2011-4810
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303987
|
- |
|
joomlaextensions
|
com_hmcommunity
|
Multiple cross-site scripting (XSS) vulnerabilities in the HM Community (com_hmcommunity) component before 1.01 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) l…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4809
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303988
|
- |
|
joomlaextensions
|
com_hmcommunity
|
SQL injection vulnerability in the HM Community (com_hmcommunity) component before 1.01 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a fnd_home action…
|
CWE-89
SQL Injection
|
CVE-2011-4808
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303989
|
- |
|
phpalbum
|
phpalbum
|
Directory traversal vulnerability in main.php in phpAlbum 0.4.1.16 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the var1 parameter.
|
CWE-22
Path Traversal
|
CVE-2011-4807
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303990
|
- |
|
phpalbum
|
phpalbum
|
Multiple cross-site scripting (XSS) vulnerabilities in main.php in phpAlbum 0.4.1.16 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) var1 and (2) keyword paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4806
|
2024-11-21 10:33 |
2011-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
