|
261111
|
- |
|
ordasoft
|
com_vehiclemanager
|
PHP remote file inclusion vulnerability in toolbar_ext.php in the VehicleManager (com_vehiclemanager) component 1.0 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL i…
|
CWE-94
Code Injection
|
CVE-2009-2633
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261112
|
- |
|
ordasoft
|
com_medialibrary
|
PHP remote file inclusion vulnerability in toolbar_ext.php in the MediaLibrary (com_media_library) component 1.5.3 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in…
|
CWE-94
Code Injection
|
CVE-2009-2634
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261113
|
- |
|
ordasoft
|
com_realestatemanager
|
PHP remote file inclusion vulnerability in toolbar_ext.php in the RealEstateManager (com_realestatemanager) component 1.0 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a…
|
CWE-94
Code Injection
|
CVE-2009-2635
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261114
|
- |
|
ordasoft
|
com_booklibrary
|
PHP remote file inclusion vulnerability in toolbar_ext.php in the BookLibrary (com_booklibrary) component 1.5.2.4 Basic for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in …
|
CWE-94
Code Injection
|
CVE-2009-2637
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261115
|
- |
|
konze
|
com_akobook
|
SQL injection vulnerability in the AkoBook (com_akobook) component 2.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the gbid parameter in a reply action to index.php.
|
CWE-89
SQL Injection
|
CVE-2009-2638
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261116
|
- |
|
mrcgiguy
|
the_ticket_system
|
SQL injection vulnerability in admin.php in MRCGIGUY The Ticket System 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewticket action.
|
CWE-89
SQL Injection
|
CVE-2009-2639
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261117
|
- |
|
rich_white
|
school_data_nav
|
PHP remote file inclusion vulnerability in app_and_readme/navigator/index.php in School Data Navigator allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: th…
|
CWE-94
Code Injection
|
CVE-2009-2641
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261118
|
- |
|
desiscripts
|
desi_short_url_script
|
index.php in Desi Short URL Script 1.0 allows remote attackers to bypass authentication by setting the logged cookie to 1 and the uid cookie to an integer value, as demonstrated by a value of 13.
|
CWE-287
Improper Authentication
|
CVE-2009-2642
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261119
|
- |
|
sun
|
opensolaris
solaris
|
Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic…
|
CWE-362
Race Condition
|
CVE-2009-2644
|
2017-09-19 10:29 |
2009-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261120
|
- |
|
sorcerersoftware
|
multimedia_jukebox
|
Heap-based buffer overflow in Sorcerer Software MultiMedia Jukebox 4.0 Build 020124 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2650
|
2017-09-19 10:29 |
2009-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
