|
268131
|
- |
|
ikiwiki
|
ikiwiki
|
Cross-site scripting (XSS) vulnerability in the htmlscrubber in Ikiwiki before 1.1.46 allows remote attackers to inject arbitrary web script or HTML via title contents.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0809
|
2008-09-6 06:36 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268132
|
- |
|
caroline
|
caroline
|
Unspecified vulnerability in the php2phps function in Claroline before 1.8.9 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2008-0824
|
2008-09-6 06:36 |
2008-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268133
|
- |
|
joomla
mambo
|
com_profile
|
SQL injection vulnerability in index.php in the com_profile component for Joomla! allows remote attackers to execute arbitrary SQL commands via the oid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0846
|
2008-09-6 06:36 |
2008-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268134
|
- |
|
schoolwires
|
academic_portal
|
Cross-site scripting (XSS) vulnerability in browse.asp in Schoolwires Academic Portal allows remote attackers to inject arbitrary web script or HTML via the c parameter. NOTE: the provenance of this…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0909
|
2008-09-6 06:36 |
2008-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268135
|
- |
|
invision_power_services
|
invision_power_board
|
Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB or IP.Board) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via crafted BBCodes in an unspecified context.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0913
|
2008-09-6 06:36 |
2008-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268136
|
- |
|
tor_world
|
com_vote
i-navigator
interactive_bbs
mobile_frontier
quotes_of_the_day
simple_bbs
simple_vote
tor_board
tor_news
tor_search
|
Cross-site scripting (XSS) vulnerability in Tor World Tor Search 1.1 and earlier, I-Navigator 4.0, Mobile Frontier 2.1 and earlier, Diary.cgi (aka Quotes of the Day) 1.5 and earlier, Tor News 1.21 an…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0917
|
2008-09-6 06:36 |
2008-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268137
|
- |
|
freshmeat
|
xwine
|
w_editeur.c in XWine 1.0.1 for Debian GNU/Linux allows local users to overwrite or print arbitrary files via a symlink attack on the temporaire temporary file. NOTE: some of these details are obtain…
|
CWE-59
Link Following
|
CVE-2008-0930
|
2008-09-6 06:36 |
2008-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268138
|
- |
|
xwine
|
xwine
|
w_export.c in XWine 1.0.1 on Debian GNU/Linux sets insecure permissions (0666) for /etc/wine/config, which might allow local users to execute arbitrary commands or cause a denial of service by modify…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0931
|
2008-09-6 06:36 |
2008-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268139
|
- |
|
xoops
|
prayer_list_module
|
SQL injection vulnerability in index.php in the Prayer List (prayerlist) 1.04 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in a view action.
|
CWE-89
SQL Injection
|
CVE-2008-0936
|
2008-09-6 06:36 |
2008-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268140
|
- |
|
tinyevent
xoops
|
tinyevent
tiny_event_module
|
SQL injection vulnerability in index.php in the Tiny Event (tinyevent) 1.01 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the id parameter in a print action, a differ…
|
CWE-89
SQL Injection
|
CVE-2008-0937
|
2008-09-6 06:36 |
2008-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
