Cross-site scripting (XSS) vulnerability in the console in Symantec IM Manager 8.3 and 8.4 before 8.4.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Date published : 2010-02-23 http://www.securityfocus.com/bid/38241...
Cross-site scripting (XSS) vulnerability in wa/auth in PortWise SSL VPN 4.6 allows remote attackers to inject arbitrary web script or HTML via the reloadFrame parameter. Date published : 2010-02-23 http://www.securityfocus.com/bid/38308 http://www.securityfocus.com/archive/1/509584/100/0/threaded
SQL injection vulnerability in cisco/services/PhonecDirectory.php in Fonality Trixbox 2.2.4 allows remote attackers to execute arbitrary SQL commands via the ID parameter. Date published : 2010-02-23 http://www.securityfocus.com/bid/38323 http://www.exploit-db.com/exploits/11508
SQL injection vulnerability in ForceChangePassword.jsp in Newgen Software OmniDocs allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-02-23 http://www.securityfocus.com/bid/38304 http://www.exploit-db.com/exploits/11393
Cross-site scripting (XSS) vulnerability in index.php in WampServer 2.0i allows remote attackers to inject arbitrary web script or HTML via the lang parameter. Date published : 2010-02-23 http://www.securityfocus.com/bid/38357 http://zeroscience.mk/codes/wamp_xss.txt
Cross-site scripting (XSS) vulnerability in index.php in VideoSearchScript Pro 3.5 allows remote attackers to inject arbitrary web script or HTML via the q parameter. Date published : 2010-02-23 http://packetstormsecurity.org/1002-exploits/vss-xss.txt http://secunia.com/advisories/38701
SQL injection vulnerability in backoffice/login.asp in Dynamicsoft WSC CMS 2.2 allows remote attackers to execute arbitrary SQL commands via the Password parameter. NOTE: some of these details are obtained from third party information. Date...
Cross-site scripting (XSS) vulnerability in the iTweak Upload module 6.x-1.x before 6.x-1.2 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users, with create content and upload file permissions, to inject arbitrary web script...
Directory traversal vulnerability in includes/download.php in the JoomlaWorks AllVideos (Jw_allVideos) plugin 3.0 through 3.2 for Joomla! allows remote attackers to read arbitrary files via a ./../…/ (modified dot dot) in the file parameter. Date...
Cross-site scripting (XSS) vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the nav_id parameter. Date published : 2010-02-23 http://www.securityfocus.com/bid/38235 http://packetstormsecurity.org/1002-exploits/basiccms-sqlxss.txt
SQL injection vulnerability in the PerchaGallery (com_perchagallery) component before 1.5b for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an editunidad action to index.php. Date published : 2010-02-23...
SQL injection vulnerability in products.php in CommodityRentals Trade Manager Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. Date published : 2010-02-23 http://www.exploit-db.com/exploits/11412 http://packetstormsecurity.org/1002-exploits/trademanager-sql.txt
SQL injection vulnerability in the IP-Tech JQuarks (com_jquarks) Component 0.2.3, and possibly earlier, for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. NOTE: some of these details...
SQL injection vulnerability in druckansicht.php in JTL-Shop 2 allows remote attackers to execute arbitrary SQL commands via the s parameter. Date published : 2010-02-23 http://www.exploit-db.com/exploits/11445 http://osvdb.org/62329