270511
|
- |
|
oocomments
|
oocomments
|
Multiple PHP remote file inclusion vulnerabilities in ooComments 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the PathToComment parameter for (1) classes/class_admin.php and …
|
CWE-94
Code Injection
|
CVE-2008-1511
|
2008-09-5 13:00 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270512
|
- |
|
avici hitachi
|
router gr2000 gr3000 gr4000
|
Unspecified vulnerability in Avici routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue …
|
NVD-CWE-noinfo CWE-20
Improper Input Validation
|
CVE-2008-2169
|
2008-09-5 13:00 |
2008-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270513
|
- |
|
century_software
|
router
|
Unspecified vulnerability in Century routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issu…
|
CWE-20
Improper Input Validation
|
CVE-2008-2170
|
2008-09-5 13:00 |
2008-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270514
|
- |
|
yamaha
|
router
|
Unspecified vulnerability in Yamaha routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue…
|
CWE-20
Improper Input Validation
|
CVE-2008-2173
|
2008-09-5 13:00 |
2008-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270515
|
- |
|
runesoft
|
cerberus_cms
|
Cross-site scripting (XSS) vulnerability in Runesoft Cerberus CMS before 3_1.4_0.9 allows remote attackers to inject arbitrary web script or HTML via a cerberus_user cookie.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3397
|
2008-09-5 13:00 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270516
|
- |
|
spacetag
|
lacoodast
|
Session fixation vulnerability in SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2008-3738
|
2008-09-5 13:00 |
2008-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270517
|
- |
|
microsoft
|
windows_vista
|
Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows local users to obtain sen…
|
CWE-200
Information Exposure
|
CVE-2008-3893
|
2008-09-5 13:00 |
2008-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270518
|
- |
|
microsoft
|
windows_vista
|
Upgrade to Vista Service Pack 1
|
CWE-200
Information Exposure
|
CVE-2008-3893
|
2008-09-5 13:00 |
2008-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270519
|
- |
|
apple omnigroup
|
safari webkit omniweb mac_os_x
|
WebCore in Apple WebKit build 18794 allows remote attackers to cause a denial of service (null dereference and application crash) via a TD element with a large number in the ROWSPAN attribute, as dem…
|
CWE-399
Resource Management Errors
|
CVE-2007-0342
|
2008-09-5 13:00 |
2007-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270520
|
- |
|
php
|
php
|
Integer overflow in the 16 bit variable reference counter in PHP 4 allows context-dependent attackers to execute arbitrary code by overflowing this counter, which causes the same variable to be destr…
|
CWE-189
Numeric Errors
|
CVE-2007-1383
|
2008-09-5 13:00 |
2007-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|