|
267311
|
- |
|
openx
|
openx
|
Unspecified vulnerability in OpenX 2.8.1 and 2.8.2 allows remote attackers to bypass authentication and obtain access to an Administrator account via unknown vectors, possibly related to www/admin/in…
|
NVD-CWE-noinfo
CWE-287
Improper Authentication
|
CVE-2009-4830
|
2010-07-30 13:00 |
2010-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267312
|
- |
|
jared_meeker
|
event_horizon
|
Multiple SQL injection vulnerabilities in modfile.php in Event Horizon (EVH) 1.1.10, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) YourEmail …
|
CWE-89
SQL Injection
|
CVE-2010-2855
|
2010-07-29 13:00 |
2010-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267313
|
- |
|
ibm
|
filenet_content_manager
|
IBM FileNet Content Manager (CM) 4.0.0, 4.0.1, 4.5.0, and 4.5.1 before FP4 does not properly manage the InheritParentPermissions setting during an upgrade from 3.x, which might allow attackers to byp…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2896
|
2010-07-29 13:00 |
2010-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267314
|
- |
|
ibm
|
filenet_content_manager
|
Per: http://www-01.ibm.com/support/docview.wss?uid=swg21441225
'Fix Central can be found at: http://www-933.ibm.com/support/fixcentral/'
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2896
|
2010-07-29 13:00 |
2010-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267315
|
- |
|
stefan_koch
|
t3m
|
SQL injection vulnerability in the T3M E-Mail Marketing Tool (t3m) extension 0.2.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4959
|
2010-07-28 23:43 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267316
|
- |
|
typo3
|
commerce_extension
|
Cross-site scripting (XSS) vulnerability in the Commerce extension before 0.9.9 for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4963
|
2010-07-28 23:43 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267317
|
- |
|
thomas_waggershauser
|
air_lexicon
|
SQL injection vulnerability in the AIRware Lexicon (air_lexicon) extension 0.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4965
|
2010-07-28 23:43 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267318
|
- |
|
elemente
|
ast_addresszipsearch
|
SQL injection vulnerability in the AST ZipCodeSearch (ast_addresszipsearch) extension 0.5.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4966
|
2010-07-28 23:43 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267319
|
- |
|
jochen_rieger
|
car
|
SQL injection vulnerability in the Car (car) extension before 0.1.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4967
|
2010-07-28 23:43 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267320
|
- |
|
christian_ehmann
|
event_registr
|
SQL injection vulnerability in the Event Registration (event_registr) extension 1.0.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4968
|
2010-07-28 23:43 |
2010-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
