268451
|
- |
|
kkeim
|
kmita_catalogue
|
Cross-site scripting (XSS) vulnerability in search.php in Kmita Catalogue 2.x allows remote attackers to inject arbitrary web script or HTML via the q parameter. NOTE: the provenance of this informa…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5067
|
2008-11-17 14:00 |
2008-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268452
|
- |
|
debian
|
xsabre
|
XRunSabre in sabre (aka xsabre) 0.2.4b relies on the ability to create /tmp/sabre.log, which allows local users to cause a denial of service (application unavailability) by creating a /tmp/sabre.log …
|
NVD-CWE-Other
|
CVE-2008-4407
|
2008-11-15 16:20 |
2008-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268453
|
- |
|
plone
|
plone
|
Cross-site scripting (XSS) vulnerability in the LiveSearch module in Plone before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via the Description field for search results, as…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4571
|
2008-11-15 16:20 |
2008-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268454
|
- |
|
mybb
|
mybb
|
SQL injection vulnerability in misc.php in MyBB (aka MyBulletinBoard) before 1.4.1 allows remote attackers to execute arbitrary SQL commands via a certain editor field.
|
CWE-89
SQL Injection
|
CVE-2008-3965
|
2008-11-15 16:19 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268455
|
- |
|
mybb
|
mybb
|
Patch information - http://community.mybboard.net/showthread.php?tid=36022
|
CWE-89
SQL Injection
|
CVE-2008-3965
|
2008-11-15 16:19 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268456
|
- |
|
mybb
|
mybb
|
Multiple cross-site scripting (XSS) vulnerabilities in MyBB (aka MyBulletinBoard) before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via (1) a certain referrer field in usercp…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3966
|
2008-11-15 16:19 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268457
|
- |
|
mybb
|
mybb
|
Patch information - http://community.mybboard.net/showthread.php?tid=36022
|
CWE-79
Cross-site Scripting
|
CVE-2008-3966
|
2008-11-15 16:19 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268458
|
- |
|
mybb
|
mybb
|
moderation.php in MyBB (aka MyBulletinBoard) before 1.4.1 does not properly check for moderator privileges, which has unknown impact and remote attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3967
|
2008-11-15 16:19 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268459
|
- |
|
mybb
|
mybb
|
Patch information - http://community.mybboard.net/showthread.php?tid=36022
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3967
|
2008-11-15 16:19 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268460
|
- |
|
phpcredo
|
phcdownload
|
SQL injection vulnerability in search.php in PHCDownload 1.1.0 allows remote attackers to execute arbitrary SQL commands via the string parameter.
|
CWE-89
SQL Injection
|
CVE-2007-6670
|
2008-11-15 16:06 |
2008-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|