Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2011-10-09 CVE-2010-4946 SQL Injection vulnerability in Allpcscript Allpc 2.5
SQL injection vulnerability in product_info.php in ALLPC 2.5 allows remote attackers to execute arbitrary SQL commands via the products_id parameter.
network
low complexity
allpcscript CWE-89
7.5
7.5
2011-10-09 CVE-2010-4945 SQL Injection vulnerability in Joomla COM Camelcitydb2 2.2
SQL injection vulnerability in the CamelcityDB (com_camelcitydb2) component 2.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
network
low complexity
joomla CWE-89
7.5
7.5
2011-10-09 CVE-2010-4944 SQL Injection vulnerability in Joomla COM Elite Experts
SQL injection vulnerability in the Elite Experts (com_elite_experts) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showExpertProfileDetailed action to index.php.
network
low complexity
joomla mambo-foundation CWE-89
7.5
7.5
2011-10-09 CVE-2010-4943 Code Injection vulnerability in Brothersoft Saurus CMS 4.7.0
Multiple PHP remote file inclusion vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to execute arbitrary PHP code via a URL in the class_path parameter to (1) file.php or (2) com_del.php.
network
low complexity
brothersoft CWE-94
7.5
7.5
2011-10-09 CVE-2010-4942 SQL Injection vulnerability in E-Xoopport Samsara 3.0/3.1
SQL injection vulnerability in location.php in the eCal module in E-Xoopport Samsara 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the lid parameter.
network
low complexity
e-xoopport CWE-89
7.5
7.5
2011-10-09 CVE-2010-4941 SQL Injection vulnerability in Joomlamo COM Teams 110281008091711
SQL injection vulnerability in the Teams (com_teams) component 1_1028_100809_1711 for Joomla! allows remote attackers to execute arbitrary SQL commands via the PlayerID parameter in a player save action to index.php.
network
low complexity
joomlamo joomla CWE-89
7.5
7.5
2011-10-09 CVE-2010-4940 SQL Injection vulnerability in Wanewsletter 2.1.2
SQL injection vulnerability in index.php in WAnewsletter 2.1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
wanewsletter CWE-89
7.5
7.5
2011-10-09 CVE-2010-4939 Code Injection vulnerability in Scripts.Bdr130 Mailform 1.2
PHP remote file inclusion vulnerability in index.php in MailForm 1.2 allows remote attackers to execute arbitrary PHP code via a URL in the theme parameter.
network
low complexity
scripts-bdr130 CWE-94
7.5
7.5
2011-10-09 CVE-2010-4938 SQL Injection vulnerability in Joomla COM Weblinks
SQL injection vulnerability in the Weblinks (com_weblinks) component in Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a categories action to index.php.
network
low complexity
joomla CWE-89
7.5
7.5
2011-10-09 CVE-2010-4937 SQL Injection vulnerability in Robitbt COM Amblog 1.0
Multiple SQL injection vulnerabilities in the Amblog (com_amblog) component 1.0 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) articleid or (2) catid parameter to index.php.
network
low complexity
robitbt joomla CWE-89
7.5
7.5