|
277951
|
- |
|
speedbit
|
download_accelerator_plus
|
SpeedBit Download Accelerator Plus (DAP) before 8.6.3.9 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse upd…
|
CWE-94
Code Injection
|
CVE-2008-3433
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277952
|
- |
|
linkedin
|
browser_toolbar
|
LinkedIn Browser Toolbar 3.0.3.1100 and earlier does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as …
|
CWE-94
Code Injection
|
CVE-2008-3435
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277953
|
- |
|
notepad\+\+
|
notepad\+\+
|
The GUP generic update process in Notepad++ before 4.8.1 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse up…
|
CWE-94
Code Injection
|
CVE-2008-3436
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277954
|
- |
|
openoffice
|
openoffice.org
|
OpenOffice.org (OOo) before 2.1.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated b…
|
CWE-94
Code Injection
|
CVE-2008-3437
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277955
|
- |
|
speedbit
|
speedbit_video_accelerator
|
SpeedBit Video Acceleration before 2.2.1.8 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demon…
|
CWE-94
Code Injection
|
CVE-2008-3439
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277956
|
- |
|
winzip
|
winzip
|
WinZip before 11.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and…
|
CWE-94
Code Injection
|
CVE-2008-3442
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277957
|
- |
|
egi_zaberl
|
e.z._poll
|
Multiple SQL injection vulnerabilities in admin/login.asp in E. Z. Poll 2 allow remote attackers to execute arbitrary SQL commands via the (1) Username and (2) Password parameters. NOTE: the provena…
|
CWE-89
SQL Injection
|
CVE-2008-3590
|
2008-09-6 06:43 |
2008-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277958
|
- |
|
acronis
|
true_image_echo_server
|
Acronis True Image Echo Server 9.x build 8072 on Linux does not properly encrypt backups to an FTP server, which allows remote attackers to obtain sensitive information. NOTE: the provenance of this…
|
CWE-310
Cryptographic Issues
|
CVE-2008-3671
|
2008-09-6 06:43 |
2008-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277959
|
- |
|
yourfreeworld
|
stylish_text_ads_script
|
SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3754
|
2008-09-6 06:43 |
2008-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277960
|
- |
|
wordpress
|
wordpress
|
Cross-site scripting (XSS) vulnerability in WordPress before 2.6, SVN development versions only, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3233
|
2008-09-6 06:42 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
