|
352501
|
- |
|
mischa_heimann
|
yatse
|
SQL injection vulnerability in the Yet another TYPO3 search engine (YATSE) extension before 0.3.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-1004
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352502
|
- |
|
mischa_heimann
|
yatse
|
Cross-site scripting (XSS) vulnerability in the Yet another TYPO3 search engine (YATSE) extension before 0.3.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1005
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352503
|
- |
|
typo3
|
brainstorming
|
SQL injection vulnerability in the Brainstorming extension 0.1.8 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-1006
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352504
|
- |
|
chi_hoang
|
ch_lightem
|
Unspecified vulnerability in the Power Extension Manager (ch_lightem) extension 1.0.34 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors.
|
CWE-200
Information Exposure
|
CVE-2010-1007
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352505
|
- |
|
christian_hennecke
|
chsellector
|
Cross-site scripting (XSS) vulnerability in the Sellector.com Widget Integration (chsellector) extension before 0.1.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unsp…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1008
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352506
|
- |
|
joachim-ruhs
|
educator
|
SQL injection vulnerability in the Educator extension 0.1.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-1009
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352507
|
- |
|
matthias_kall
|
mk_wastebasket
|
SQL injection vulnerability in the MK Wastebasket (mk_wastebasket) extension 2.1.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-1010
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352508
|
- |
|
steffen_kamper
|
reports_logview
|
Cross-site scripting (XSS) vulnerability in the Reports Logfile View (reports_logview) extension 1.2.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspeci…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1014
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352509
|
- |
|
laurent_foulloy
|
sav_filter_selectors
|
SQL injection vulnerability in the SAV Filter Selectors (sav_filter_selectors) extension before 1.0.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-1016
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352510
|
- |
|
laurent_foulloy
|
sav_filter_months
|
SQL injection vulnerability in the SAV Filter Months (sav_filter_months) extension before 1.0.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-1017
|
2010-03-22 13:00 |
2010-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
