|
257451
|
- |
|
alibasta
|
com_koesubmit
|
PHP remote file inclusion vulnerability in koesubmit.php in the koeSubmit (com_koesubmit) component 1.0 for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_abso…
|
CWE-94
Code Injection
|
CVE-2009-3333
|
2017-09-19 10:29 |
2009-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257452
|
- |
|
lhacky
|
com_jinc
|
SQL injection vulnerability in the Lhacky! Extensions Cave Joomla! Integrated Newsletters Component (aka JINC or com_jinc) component 0.2 for Joomla! allows remote attackers to execute arbitrary SQL c…
|
CWE-89
SQL Injection
|
CVE-2009-3334
|
2017-09-19 10:29 |
2009-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257453
|
- |
|
turtus
|
turtushout
|
SQL injection vulnerability in the TurtuShout component 0.11 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Name field.
|
CWE-89
SQL Injection
|
CVE-2009-3335
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257454
|
- |
|
phpprobid
|
php_pro_bid
|
SQL injection vulnerability in auction_details.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auction_id parameter.
|
CWE-89
SQL Injection
|
CVE-2009-3336
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257455
|
- |
|
effectmatrix
|
magic_morph
|
Stack-based buffer overflow in EffectMatrix (E.M.) Magic Morph 1.95b allows remote attackers to execute arbitrary code via a long string in a .mor file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3338
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257456
|
- |
|
hotwebscripts
|
hotweb_rentals
|
SQL injection vulnerability in details.asp in HotWeb Rentals allows remote attackers to execute arbitrary SQL commands via the PropId parameter.
|
CWE-89
SQL Injection
|
CVE-2009-3343
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257457
|
- |
|
datavore
|
gyro
|
Cross-site scripting (XSS) vulnerability in Datavore Gyro 5.0 allows remote attackers to inject arbitrary web script or HTML via the cid parameter in a cat action to the home component.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3348
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257458
|
- |
|
datavore
|
gyro
|
SQL injection vulnerability in Datavore Gyro 5.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter in a cat action to the home component.
|
CWE-89
SQL Injection
|
CVE-2009-3349
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257459
|
- |
|
plohni
|
image_voting
|
SQL injection vulnerability in index.php in Image voting 1.0 allows remote attackers to execute arbitrary SQL commands via the show parameter.
|
CWE-89
SQL Injection
|
CVE-2009-3356
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257460
|
- |
|
tourismscripts
|
adult_portal_escort_listing
|
SQL injection vulnerability in profile.php in Tourism Scripts Adult Portal escort listing allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
|
CWE-89
SQL Injection
|
CVE-2009-3358
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
