|
257411
|
- |
|
bpftp
|
bulletproof_ftp_client
|
Stack-based buffer overflow in BulletProof FTP Client allows user-assisted attackers to execute arbitrary code via a .bps file (aka Session-File) with a long second line, possibly a related issue to …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5754
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257412
|
- |
|
intellitamper
|
intellitamper
|
Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows remote attackers to execute arbitrary code via a MAP file containing a long URL, possibly a related issue to CVE-2006-2494.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5755
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257413
|
- |
|
bpsoft
|
hex_workshop
|
Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 allows user-assisted attackers to cause a denial of service and possibly execute arbitrary code via a long mapping reference in a Color Mappi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5756
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257414
|
- |
|
flatnux
|
flatnux
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS (aka Flatnuke3) 2008-12-11 allow remote attackers to inject arbitrary web script or HTML via (1) the mod parameter to the default UR…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5761
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257415
|
- |
|
mariovaldez
|
simple_text-file_login_script
|
Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5762
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257416
|
- |
|
mariovaldez
|
simple_text-file_login_script
|
PHP remote file inclusion vulnerability in slogin_lib.inc.php in Simple Text-File Login Script (SiTeFiLo) 1.0.6 allows remote attackers to execute arbitrary PHP code via a URL in the slogin_path para…
|
CWE-94
Code Injection
|
CVE-2008-5763
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257417
|
- |
|
2500mhz
|
worksimple
|
PHP remote file inclusion vulnerability in calendar.php in WorkSimple 1.2.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the lang parameter.
|
CWE-94
Code Injection
|
CVE-2008-5764
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257418
|
- |
|
2500mhz
|
worksimple
|
WorkSimple 1.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing usernames and passwords via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5765
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257419
|
- |
|
fascript
|
faupload
|
SQL injection vulnerability in download.php in Farsi Script Faupload allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5766
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257420
|
- |
|
gazatem
|
gnews_publisher
|
SQL injection vulnerability in authors.asp in gNews Publisher allows remote attackers to execute arbitrary SQL commands via the authorID parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5767
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
