|
260451
|
- |
|
pligg
|
pligg_cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Pligg before 1.0.3 allow remote attackers to hijack the authentication of administrators for requests that create user accounts or have u…
|
CWE-352
Origin Validation Error
|
CVE-2009-4787
|
2010-06-11 13:00 |
2010-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260452
|
- |
|
shape5
|
bridge_of_hope_template
|
SQL injection vulnerability in the Shape5 Bridge of Hope template for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an article action to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-2254
|
2010-06-10 13:00 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260453
|
- |
|
tamlyncreative
|
com_bfsurvey_profree
com_bfsurvey_pro
com_bfsurvey_basic
|
SQL injection vulnerability in the BF Survey Pro (com_bfsurvey_pro) component before 1.3.1, BF Survey Pro Free (com_bfsurvey_profree) component 1.2.6, and BF Survey Basic component before 1.2 for Joo…
|
CWE-89
SQL Injection
|
CVE-2010-2255
|
2010-06-10 13:00 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260454
|
- |
|
payperviewvideosoftware
|
pay_per_minute_video_chat_script
|
Multiple cross-site scripting (XSS) vulnerabilities in Pay Per Minute Video Chat Script 2.0 and 2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/mem…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2256
|
2010-06-10 13:00 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260455
|
- |
|
payperviewvideosoftware
|
pay_per_minute_video_chat_script
|
SQL injection vulnerability in index_ie.php in Pay Per Minute Video Chat Script 2.0 and 2.1 allows remote attackers to execute arbitrary SQL commands via the page parameter.
|
CWE-89
SQL Injection
|
CVE-2010-2257
|
2010-06-10 13:00 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260456
|
- |
|
tamlyncreative
|
com_bfsurvey_profree
com_bfsurvey_pro
com_bfsurvey_basic
|
Directory traversal vulnerability in the BF Survey (com_bfsurvey) component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller param…
|
CWE-22
Path Traversal
|
CVE-2010-2259
|
2010-06-10 13:00 |
2010-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260457
|
- |
|
apple
|
safari
|
JavaScriptCore.dll, as used in Apple Safari 4.0.5 on Windows XP SP3, allows remote attackers to cause a denial of service (application crash) via an HTML document composed of many successive occurren…
|
NVD-CWE-noinfo
|
CVE-2010-1131
|
2010-06-8 13:00 |
2010-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260458
|
- |
|
rockettheme
|
com_rokmodule
|
SQL injection vulnerability in the RokModule (com_rokmodule) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the module parameter to index.php. NOTE: some of …
|
CWE-89
SQL Injection
|
CVE-2010-1480
|
2010-06-8 13:00 |
2010-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260459
|
- |
|
speedtech
|
storm
|
Multiple cross-site scripting (XSS) vulnerabilities in the Storm module 5.x and 6.x before 6.x-1.33 for Drupal allow remote authenticated users, with certain module privileges, to inject arbitrary we…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2158
|
2010-06-8 13:00 |
2010-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260460
|
- |
|
novell
|
netware
|
NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allows user-assisted remote attackers to cause a denial of service (console hang) via a large number of FTP sessions, …
|
NVD-CWE-noinfo
|
CVE-2003-1591
|
2010-06-8 13:00 |
2010-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
