|
261521
|
- |
|
nodesforum
|
nodesforum
|
Multiple PHP remote file inclusion vulnerabilities in Nodesforum 1.033 and 1.045, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) _nodesfor…
|
CWE-94
Code Injection
|
CVE-2010-1351
|
2017-08-17 10:32 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261522
|
- |
|
wowjoomla
|
com_loginbox
|
Directory traversal vulnerability in the LoginBox Pro (com_loginbox) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php.
|
CWE-22
Path Traversal
|
CVE-2010-1353
|
2017-08-17 10:32 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261523
|
- |
|
sbddirectorysoftware
|
sbd_directory_software
|
Cross-site scripting (XSS) vulnerability in editors/logindialogue.php in SBD Directory Software 4.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2010-1357
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261524
|
- |
|
boesch-it
|
faqengine
|
Multiple PHP remote file inclusion vulnerabilities in FAQEngine 4.24.00 allow remote attackers to execute arbitrary PHP code via a URL in the path_faqe parameter to (1) attachs.php, (2) backup.php, (…
|
CWE-94
Code Injection
|
CVE-2010-1360
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261525
|
- |
|
glarotech
|
phpeppershop
|
Cross-site scripting (XSS) vulnerability in shop/USER_ARTIKEL_HANDLING_AUFRUF.php in PHPepperShop 2.5 allows remote attackers to inject arbitrary web script or HTML via the darstellen parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-1361
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261526
|
- |
|
extremejoomla
|
com_j-projects
|
SQL injection vulnerability in the JProjects (com_j-projects) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the project parameter in a projects action to index.p…
|
CWE-89
SQL Injection
|
CVE-2010-1363
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261527
|
- |
|
gamescript
|
gamescript
|
SQL injection vulnerability in index.php in GameScript (GS) 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a category action.
|
CWE-89
SQL Injection
|
CVE-2010-1368
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261528
|
- |
|
hdflvplayer
|
com_hdflvplayer
|
SQL injection vulnerability in the HD FLV Player (com_hdflvplayer) component 1.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2010-1372
|
2017-08-17 10:32 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261529
|
- |
|
linux
|
linux_kernel
|
arch/powerpc/mm/fsl_booke_mmu.c in KGDB in the Linux kernel 2.6.30 and other versions before 2.6.33, when running on PowerPC, does not properly perform a security check for access to a kernel page, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1446
|
2017-08-17 10:32 |
2010-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261530
|
- |
|
tweakfs
|
tweakfs_zip_utility
|
Stack-based buffer overflow in Create and Extract Zips TweakFS Zip Utility 1.0 for Flight Simulator X (FSX) allows remote attackers to execute arbitrary code via a long filename in a ZIP archive.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1458
|
2017-08-17 10:32 |
2010-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
