7210 matches found
CVE-2010-4958
SQL injection vulnerability in index.php in Prado Portal 1.2.0 allows remote attackers to execute arbitrary SQL commands via the page parameter...
CVE-2010-4945
SQL injection vulnerability in the CamelcityDB comcamelcitydb2 component 2.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php...
Sql injection
SQL injection vulnerability in the Slide Show comslideshow component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php...
Sql injection
SQL injection vulnerability in index.php in WAnewsletter 2.1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in the Joostina comezautos component for Joomla! allows remote attackers to execute arbitrary SQL commands via the firstCode parameter in a helpers action to index.php...
Sql injection
SQL injection vulnerability in the Teams comteams component 110281008091711 for Joomla! allows remote attackers to execute arbitrary SQL commands via the PlayerID parameter in a player save action to index.php...
CVE-2010-4930
Cross-site scripting XSS vulnerability in index.php in @mail Webmail before 6.2.0 allows remote attackers to inject arbitrary web script or HTML via the MailType parameter in a mail/auth/processlogin action...
CVE-2010-4940
The CVE-2010-4940 entry concerns WAnewsletter 2.1.2, where a flaw in the script index.php enables SQL injection through the id parameter. This allows remote attackers to construct and execute arbitrary SQL commands, with potential partial confidentiality, integrity, and availability impacts as in...
CVE-2010-4939
CVE-2010-4939 is a PHP remote file inclusion vulnerability affecting MailForm 1.2 (index.php). The underlying issue is unsafe handling of the theme parameter, allowing an attacker to include a URL and execute arbitrary PHP code on the server. CVSS v2 base score is 7.5 (HIGH) with network access, ...
CVE-2010-4903
CVE-2010-4903 : CubeCart 4.3.3 contains a vulnerability in index.php where the searchStr parameter enables an SQL injection, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists a base score of 7.5 (HIGH) with network attack vector and low complexity, no authentication...
CVE-2010-4870
SQL injection vulnerability in index.php in BloofoxCMS 0.3.5 allows remote attackers to execute arbitrary SQL commands via the gender parameter...
CVE-2010-4870
BloofoxCMS 0.3.5 is vulnerable to an SQL injection in index.php via the gender parameter, allowing remote attackers to execute arbitrary SQL commands. This CVE (CVE-2010-4870) is backed by multiple sources (NVD entry and OpenVAS/PRION listings) that confirm the flaw and impact (high severity, CVS...
CVE-2010-4869
SQL injection vulnerability in index.php in DBHcms 1.1.4 allows remote attackers to execute arbitrary SQL commands via the editmenu parameter...
CVE-2010-4859
SQL injection vulnerability in index.php in WebAsyst Shop-Script allows remote attackers to execute arbitrary SQL commands via the blogid parameter in a news action...
CVE-2010-4862
SQL injection vulnerability in the JExtensions JE Directory comjedirectory component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php...
Sql injection
SQL injection vulnerability in index.php in DBHcms 1.1.4 allows remote attackers to execute arbitrary SQL commands via the editmenu parameter...
Sql injection
SQL injection vulnerability in index.php in Chipmunk Board 1.3 allows remote attackers to execute arbitrary SQL commands via the forumID parameter...
CVE-2010-4862
SQL injection vulnerability in the JExtensions JE Directory comjedirectory component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php...
CVE-2010-4869
CVE-2010-4869 targets DBHcms 1.1.4, where a SQL injection flaw in index.php allows remote attackers to inject arbitrary SQL via the editmenu parameter. The CVSS2 base score is 7.5 (HIGH) with network attack vector, no authentication, and partial impact on confidentiality, integrity, and availabil...
CVE-2010-4866
CVE-2010-4866 describes a SQL injection vulnerability in Chipmunk Board 1.3, specifically in index.php, allowing remote attackers to execute arbitrary SQL commands via the forumID parameter. The reports indicate a remote exploit path with a base score of 7.5 (HIGH) under CVSS v2, but the provided...