|
312991
|
- |
|
iskenderaltuntas
|
oto_galeri_sistemi
|
Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) arac parameter to carsdetail.asp and the (2) marka parameter to t…
|
CWE-89
SQL Injection
|
CVE-2010-4615
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312992
|
- |
|
mhproducts
|
ero_auktion
|
SQL injection vulnerability in item.php in Ero Auktion 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2010-0723.
|
CWE-89
SQL Injection
|
CVE-2010-4614
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312993
|
- |
|
hycus
|
hycus_cms
|
Multiple directory traversal vulnerabilities in Hycus CMS 1.0.3 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the site parameter to (1) index.php and (2) a…
|
CWE-22
Path Traversal
|
CVE-2010-4613
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312994
|
- |
|
hycus
|
hycus_cms
|
Multiple SQL injection vulnerabilities in index.php in Hycus CMS 1.0.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) user_name and (2) usr_e…
|
CWE-89
SQL Injection
|
CVE-2010-4612
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312995
|
- |
|
html-edit
|
html-edit_cms
|
Html-edit CMS 3.1.8 allows remote attackers to obtain sensitive information via a direct request to (1) pages.php and (2) menu.php in includes/core_files and (3) extensions/login/frontend/pages/antih…
|
CWE-200
Information Exposure
|
CVE-2010-4611
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312996
|
- |
|
html-edit
|
html-edit_cms
|
Cross-site scripting (XSS) vulnerability in index.php in Html-edit CMS 3.1.8 allows remote attackers to inject arbitrary web script or HTML via the error parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4610
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312997
|
- |
|
html-edit
|
html-edit_cms
|
SQL injection vulnerability in index.php in Html-edit CMS 3.1.8 allows remote attackers to execute arbitrary SQL commands via the nuser parameter in a registrate action.
|
CWE-89
SQL Injection
|
CVE-2010-4609
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312998
|
- |
|
habariproject
|
habari
|
Habari 0.6.5 allows remote attackers to obtain sensitive information via a direct request to (1) header.php and (2) comments_items.php in system/admin/, which reveals the installation path in an erro…
|
CWE-200
Information Exposure
|
CVE-2010-4608
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312999
|
- |
|
habariproject
|
habari
|
Multiple cross-site scripting (XSS) vulnerabilities in Habari 0.6.5, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) additem_form parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4607
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313000
|
- |
|
ibm
|
tivoli_storage_manager
|
Unspecified vulnerability in the Space Management client in the Hierarchical Storage Management (HSM) component in IBM Tivoli Storage Manager (TSM) 5.4.x before 5.4.3.4, 5.5.x before 5.5.3, 6.1.x bef…
|
NVD-CWE-noinfo
|
CVE-2010-4606
|
2024-11-21 10:21 |
2010-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|