|
265681
|
- |
|
opensuse
|
zypper
|
zypp-refresh-patches in zypper in SUSE openSUSE 10.2, 10.3, and 11.0 does not ask the user before accepting repository keys, which allows remote repositories to cause a denial of service (package dat…
|
CWE-20
Improper Input Validation
|
CVE-2008-3187
|
2017-08-8 10:31 |
2008-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265682
|
- |
|
phpmyadmin
|
phpmyadmin
|
Cross-site request forgery (CSRF) vulnerability in phpMyAdmin before 2.11.7.1 allows remote attackers to perform unauthorized actions via a link or IMG tag to (1) the db parameter in the "Creating a …
|
CWE-352
Origin Validation Error
|
CVE-2008-3197
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265683
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 3.x before 3.0.1 allows remote attackers to inject arbitrary web script into a chrome document via unspecified vectors, as demonstrated by injection into a XUL error page. NOTE: this…
|
CWE-94
Code Injection
|
CVE-2008-3198
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265684
|
- |
|
resiprocate
|
resiprocate
|
Multiple unspecified vulnerabilities in ReSIProcate before 1.3.4 allow remote attackers to cause a denial of service (stack consumption) via unknown network traffic with a large "bytes-in-memory/byte…
|
CWE-20
Improper Input Validation
|
CVE-2008-3199
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265685
|
- |
|
pagefusion
|
pagefusion
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Pagefusion 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) acct_fname and (2) acct_lname parameters i…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3201
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265686
|
- |
|
xomol
|
xomol_cms
|
Cross-site scripting (XSS) vulnerability in index.php in Xomol CMS 1.2 allows remote attackers to inject arbitrary web script or HTML via the current_url parameter in a tellafriend action. NOTE: the…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3202
|
2017-08-8 10:31 |
2008-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265687
|
- |
|
scripteen
|
free_image_hosting_script
|
Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to admin/lo…
|
CWE-89
SQL Injection
|
CVE-2008-3212
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265688
|
- |
|
thekelleys
|
dnsmasq
|
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, re…
|
CWE-20
Improper Input Validation
|
CVE-2008-3214
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265689
|
- |
|
clam_anti-virus
|
clamav
|
libclamav/petite.c in ClamAV before 0.93.3 allows remote attackers to cause a denial of service via a malformed Petite file that triggers an out-of-bounds memory access. NOTE: this issue exists beca…
|
CWE-399
Resource Management Errors
|
CVE-2008-3215
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265690
|
- |
|
debian
|
projectl
|
The save function in br/prefmanager.d in projectl 1.001 creates a projectL.prf file in the current working directory, which allows local users to overwrite arbitrary files via a symlink attack.
|
CWE-59
Link Following
|
CVE-2008-3216
|
2017-08-8 10:31 |
2008-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
