269011
|
- |
|
cutephp
|
cutenews
|
PHP remote file inclusion vulnerability in CuteNews 0.88 allows remote attackers to execute arbitrary PHP code via a URL in the cutepath parameter in (1) shownews.php, (2) search.php, or (3) comments…
|
CWE-94
Code Injection
|
CVE-2003-1240
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269012
|
- |
|
levcgi.com
|
myguestbook
|
Cross-site scripting vulnerability (XSS) in (1) admin_index.php, (2) admin_pass.php, (3) admin_modif.php, and (4) admin_suppr.php in MyGuestbook 3.0 allows remote attackers to execute arbitrary PHP c…
|
NVD-CWE-Other
|
CVE-2003-1241
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269013
|
- |
|
-
|
-
|
Sage 1.0 b3 allows remote attackers to obtain the root web server path via a URL request for a non-existent module, which returns the path in an error message.
|
NVD-CWE-Other
|
CVE-2003-1242
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269014
|
- |
|
phpbb_group
|
phpbb
|
SQL injection vulnerability in page_header.php in phpBB 2.0, 2.0.1 and 2.0.2 allows remote attackers to brute force user passwords and possibly gain unauthorized access to forums via the forum_id par…
|
CWE-89
SQL Injection
|
CVE-2003-1244
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269015
|
- |
|
pedestal_software
|
integrity_protection_driver
|
NtCreateSymbolicLinkObject in ntdll.dll in Integrity Protection Driver (IPD) 1.2 and 1.3 allows local users to create and overwrite arbitrary files via a symlink attack on \winnt\system32\drivers usi…
|
NVD-CWE-Other
|
CVE-2003-1246
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269016
|
- |
|
positive_software
|
h-sphere
|
Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fnam…
|
NVD-CWE-Other
|
CVE-2003-1247
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269017
|
- |
|
positive_software
|
h-sphere
|
H-Sphere WebShell 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) mode and (2) zipfile parameters in a URL request.
|
NVD-CWE-Other
|
CVE-2003-1248
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269018
|
- |
|
businessobjects
|
webintelligence
|
WebIntelligence 2.7.1 uses guessable user session cookies, which allows remote attackers to hijack sessions.
|
NVD-CWE-Other
|
CVE-2003-1249
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269019
|
- |
|
efficient_networks
|
5861_dsl_router
|
Efficient Networks 5861 DSL router, when running firmware 5.3.80 configured to block incoming TCP SYN, packets allows remote attackers to cause a denial of service (crash) via a flood of TCP SYN pack…
|
NVD-CWE-Other
|
CVE-2003-1250
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
269020
|
- |
|
nx
|
n_x_web_content_management_system_2002
|
The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php) scripts in N/X 2002 allow remote attackers to execute arbitrary PHP code via …
|
NVD-CWE-Other
|
CVE-2003-1251
|
2008-09-6 05:36 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|