|
310781
|
- |
|
thomas_hempel
|
th_ultracards
|
SQL injection vulnerability in the ultraCards (th_ultracards) extension before 0.5.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4955
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310782
|
- |
|
websedit
|
sk_calendar
|
SQL injection vulnerability in the Versatile Calendar Extension [VCE] (sk_calendar) extension before 0.3.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4954
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310783
|
- |
|
stefan_geith
|
sg_userdata
|
Cross-site scripting (XSS) vulnerability in the Userdata Create/Edit (sg_userdata) extension before 0.91.0 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vec…
|
CWE-79
Cross-site Scripting
|
CVE-2009-4953
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310784
|
- |
|
serge_gebhardt
|
dir_listing
|
Directory traversal vulnerability in the Directory Listing (dir_listing) extension 1.1.0 and earlier for TYPO3 allows remote attackers to have an unspecified impact via unknown vectors.
|
CWE-22
Path Traversal
|
CVE-2009-4952
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310785
|
- |
|
hans_olthoff
|
alternet_csa_out
|
Unspecified vulnerability in the ClickStream Analyzer [output] (alternet_csa_out) extension 0.3.0 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors.
|
CWE-200
Information Exposure
|
CVE-2009-4951
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310786
|
- |
|
tim_lochmueller_\&_thomas_buss
|
a21glossary_advanced_output
|
SQL injection vulnerability in the A21glossary Advanced Output (a21glossary_advanced_output) extension before 0.1.12 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecifie…
|
CWE-89
SQL Injection
|
CVE-2009-4950
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310787
|
- |
|
joachim_ruhs
|
locator
|
SQL injection vulnerability in the Store Locator extension before 1.2.8 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2009-4949
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310788
|
- |
|
joachim_ruhs
|
locator
|
Cross-site scripting (XSS) vulnerability in the Store Locator extension before 1.2.8 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-4948
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310789
|
- |
|
q2solutions
|
connx
|
SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 Solutions ConnX 4.0.20080606 allows remote attackers to execute arbitrary SQL commands via the txtEmail parameter.
|
CWE-89
SQL Injection
|
CVE-2009-4947
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310790
|
- |
|
thetricky
|
com_messaging
|
Directory traversal vulnerability in the Messaging (com_messaging) component before 1.5.1 for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequ…
|
CWE-22
Path Traversal
|
CVE-2009-4946
|
2024-11-21 10:10 |
2010-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
