268021
|
- |
|
eicrasoft
|
eicra_car_rental-script
|
Multiple SQL injection vulnerabilities in index.php in Eicra Car Rental-Script, when the plugin_id parameter is 4, allow remote attackers to execute arbitrary SQL commands via the (1) users (username…
|
CWE-89
SQL Injection
|
CVE-2010-0631
|
2010-02-15 14:00 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268022
|
- |
|
will_estes
|
flex
|
Unspecified vulnerability in Fast Lexical Analyzer Generator (flex) before 2.5.35 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2010-0634
|
2010-02-15 14:00 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268023
|
- |
|
jevents
|
jevents_search_plugin
|
SQL injection vulnerability in the plgSearchEventsearch::onSearch method in eventsearch.php in the JEvents Search plugin 1.5 through 1.5.3 for Joomla! allows remote attackers to execute arbitrary SQL…
|
CWE-89
SQL Injection
|
CVE-2010-0635
|
2010-02-15 14:00 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268024
|
- |
|
hp
|
operations_agent
|
HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2010-0444
|
2010-02-13 16:22 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268025
|
- |
|
web_development_house
|
alibaba_clone
|
Multiple SQL injection vulnerabilities in Web Development House Alibaba Clone allow remote attackers to execute arbitrary SQL commands via the (1) IndustryID parameter to category.php and the (2) Sel…
|
CWE-89
SQL Injection
|
CVE-2009-2439
|
2010-02-13 14:00 |
2009-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268026
|
- |
|
osticket
|
osticket
|
SQL injection vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users, with "Staff" permissions, to execute arbitrary SQL commands via the input parameter.
|
CWE-89
SQL Injection
|
CVE-2010-0605
|
2010-02-12 14:00 |
2010-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268027
|
- |
|
novaboard
|
novaboard
|
SQL injection vulnerability in index.php in NovaBoard 1.1.2 allows remote attackers to execute arbitrary SQL commands via the forums[] parameter in a search action.
|
CWE-89
SQL Injection
|
CVE-2010-0608
|
2010-02-12 14:00 |
2010-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268028
|
- |
|
netbsd
|
netbsd
|
Integer signedness error in NetBSD 4.0, 5.0, and NetBSD-current before 2010-01-21 allows local users to cause a denial of service (kernel panic) via a negative mixer index number being passed to (1) …
|
CWE-189
Numeric Errors
|
CVE-2010-0561
|
2010-02-9 14:00 |
2010-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268029
|
- |
|
sun
|
one_web_server
|
Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP a…
|
CWE-189
Numeric Errors
|
CVE-2003-1579
|
2010-02-8 23:55 |
2010-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268030
|
- |
|
ibm
|
cognos_express
|
IBM Cognos Express 9.0 allows attackers to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials.
|
CWE-255
Credentials Management
|
CVE-2010-0557
|
2010-02-8 14:00 |
2010-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|