|
265261
|
- |
|
cisco
|
unified_presence
unified_presence_server
|
The Presence Engine (PE) service in Cisco Unified Presence before 6.0(1) allows remote attackers to cause a denial of service (core dump and service interruption) via malformed packets, aka Bug ID CS…
|
CWE-20
Improper Input Validation
|
CVE-2008-1158
|
2017-08-8 10:29 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265262
|
- |
|
flyspray
|
flyspray
|
Multiple cross-site scripting (XSS) vulnerabilities in Flyspray 0.9.9 through 0.9.9.4 allow remote attackers to inject arbitrary web script or HTML via (1) a forced SQL error message or (2) old_value…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1165
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265263
|
- |
|
sarg
|
squid_analysis_report_generator
|
Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not prope…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1168
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265264
|
- |
|
simm-comm
|
sci_photo_chat
|
Directory traversal vulnerability in the embedded HTTP server in SCI Photo Chat Server 3.4.9 and earlier allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) or "../" (dot …
|
CWE-22
Path Traversal
|
CVE-2008-1169
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265265
|
- |
|
centreon
|
centreon
|
Multiple cross-site scripting (XSS) vulnerabilities in include/common/javascript/color_picker.php in Centreon 1.4.2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1179
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265266
|
- |
|
bsd_perimeter
|
pfsense
|
Cross-site scripting (XSS) vulnerability in BSD Perimeter pfSense before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-1182
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265267
|
- |
|
crafty_syntax_live_help
|
crafty_syntax_live_help
|
Multiple cross-site scripting (XSS) vulnerabilities in Crafty Syntax Live Help (CSLH) before 2.14.6 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) liv…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1183
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265268
|
- |
|
dnssec-tools
|
dnssec-tools
|
The DNSSEC validation library (libval) library in dnssec-tools before 1.3.1 does not properly check that the signing key is the APEX trust anchor, which might allow attackers to conduct unspecified a…
|
CWE-255
Credentials Management
|
CVE-2008-1184
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265269
|
- |
|
adobe
|
flash
|
Multiple unspecified vulnerabilities in FLA file parsing in Adobe Flash CS3 Professional, Flash Professional 8, and Flash Basic 8 on Windows allow user-assisted remote attackers to execute arbitrary …
|
NVD-CWE-noinfo
CWE-94
Code Injection
|
CVE-2008-1201
|
2017-08-8 10:29 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265270
|
- |
|
adobe
|
coldfusion
|
The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without de…
|
NVD-CWE-Other
|
CVE-2008-1203
|
2017-08-8 10:29 |
2008-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
