|
260821
|
- |
|
resalecode
|
php_shopping_cart_selling_website_script
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in PHP Shopping Cart Selling Website Script allow remote attackers to inject arbitrary web script or HTML via the (1) txtkeywords and …
|
CWE-79
Cross-site Scripting
|
CVE-2009-4688
|
2010-03-11 14:00 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260822
|
- |
|
resalecode
|
php_shopping_cart_selling_website_script
|
SQL injection vulnerability in index.php in PHP Shopping Cart Selling Website Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
|
CWE-89
SQL Injection
|
CVE-2009-4689
|
2010-03-11 14:00 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260823
|
- |
|
resalecode
|
classified_linktrader_script
|
SQL injection vulnerability in addlink.php in Classified Linktrader Script allows remote attackers to execute arbitrary SQL commands via the slctCategories parameter.
|
CWE-89
SQL Injection
|
CVE-2009-4691
|
2010-03-11 14:00 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260824
|
- |
|
thomas_perez
|
tribisur
|
Directory traversal vulnerability in modules/hayoo/index.php in Tribisur 2.1, 2.0, and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via d…
|
CWE-22
Path Traversal
|
CVE-2010-0958
|
2010-03-11 05:14 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260825
|
- |
|
energizer
|
duo_usb
|
UsbCharger.dll in the Energizer DUO USB battery charger software contains a backdoor that is implemented through the Arucer.dll file in the %WINDIR%\system32 directory, which allows remote attackers …
|
CWE-94
Code Injection
|
CVE-2010-0103
|
2010-03-11 05:13 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260826
|
- |
|
energizer
|
duo_usb
|
Per: http://www.energizer.com/usbcharger/download/March_8_2010_USB_Release__3_.pdf
"Energizer has discontinued sale of this product and has removed the site to download the software. In addition…
|
CWE-94
Code Injection
|
CVE-2010-0103
|
2010-03-11 05:13 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260827
|
- |
|
samba
|
samba
|
smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAP_DAC_OVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via stan…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0728
|
2010-03-11 05:13 |
2010-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260828
|
- |
|
inertialfate
|
com_if_nexus
|
Directory traversal vulnerability in the inertialFATE iF Portfolio Nexus (com_if_nexus) component 1.5 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot do…
|
CWE-22
Path Traversal
|
CVE-2009-4679
|
2010-03-9 14:00 |
2010-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260829
|
- |
|
perforce
|
perforce_server
|
The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (daemon crash) via crafted data beginning with a byte sequence of 0x4c, 0xb3, 0xff, 0xff,…
|
CWE-20
Improper Input Validation
|
CVE-2010-0929
|
2010-03-8 14:00 |
2010-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260830
|
- |
|
perforce
|
perforce_server
|
The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (infinite loop) via crafted data that includes a byte sequence of 0xdc, 0xff, 0xff, and 0…
|
CWE-399
Resource Management Errors
|
CVE-2010-0930
|
2010-03-8 14:00 |
2010-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
