|
258651
|
- |
|
justjoomla
|
com_treeg
|
PHP remote file inclusion vulnerability in admin.treeg.php in the Flash Tree Gallery (com_treeg) component 1.0 for Joomla!, when register_globals is enabled, allows remote attackers to execute arbitr…
|
CWE-94
Code Injection
|
CVE-2008-6482
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258652
|
- |
|
virtuemart-solutions
|
com_googlebase
|
PHP remote file inclusion vulnerability in admin.googlebase.php in the Ecom Solutions VirtueMart Google Base (aka com_googlebase or Froogle) component 1.1 for Joomla! allows remote attackers to execu…
|
CWE-94
Code Injection
|
CVE-2008-6483
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258653
|
- |
|
mole-group
|
taxi_calc_dist_script
|
SQL injection vulnerability in login.php in Mole Group Taxi Map Script (aka Taxi Calc Dist Script) allows remote attackers to execute arbitrary SQL commands via the user field.
|
CWE-89
SQL Injection
|
CVE-2008-6484
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258654
|
- |
|
softcomplex
|
php_image_gallery
|
SQL injection vulnerability in index.php in SoftComplex PHP Image Gallery allows remote attackers to execute arbitrary SQL commands via the ctg parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6485
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258655
|
- |
|
digiappz
|
digiaffiliate
|
Multiple SQL injection vulnerabilities in login.asp in Digiappz DigiAffiliate 1.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) admin and (2) password fields.
|
CWE-89
SQL Injection
|
CVE-2008-6487
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258656
|
- |
|
softcomplex
|
php_image_gallery
|
SQL injection vulnerability in index.php in SoftComplex PHP Image Gallery 1.0 allows remote attackers to execute arbitrary SQL commands via the Admin field in a login action.
|
CWE-89
SQL Injection
|
CVE-2008-6488
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258657
|
- |
|
huseyin_bora_abaci
|
com_myalbum
|
SQL injection vulnerability in MyAlbum component (com_myalbum) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the album parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2008-6489
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258658
|
- |
|
flysforum
|
flaber
|
function/update_xml.php in FLABER 1.1 and earlier allows remote attackers to overwrite arbitrary files by specifying the target filename in the target_file parameter. NOTE: this can be leveraged for…
|
CWE-20
Improper Input Validation
|
CVE-2008-6490
|
2017-09-29 10:33 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258659
|
- |
|
tizag
|
tizag_countdown_creator
|
Unrestricted file upload vulnerability in process.php in Tizag Countdown Creator 3 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via index.php, th…
|
CWE-20
Improper Input Validation
|
CVE-2008-6492
|
2017-09-29 10:33 |
2009-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258660
|
- |
|
easy-news
|
easy_content_management_publishing
|
Easy Content Management Publishing stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for Data…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6493
|
2017-09-29 10:33 |
2009-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
