257491
|
- |
|
ourvideocms
|
ourvideo_cms
|
Directory traversal vulnerability in phpi/rss.php in Ourvideo CMS 9.5, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal s…
|
CWE-22
Path Traversal
|
CVE-2008-2978
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257492
|
- |
|
ourvideo_cms
|
ourvideo_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in phpi/login.php in Ourvideo CMS 9.5 allow remote attackers to inject arbitrary web script or HTML via the (1) top_page and (2) end_page parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2979
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257493
|
- |
|
homeph_design
|
homeph_design
|
Multiple cross-site scripting (XSS) vulnerabilities in HomePH Design 2.10 RC2 allow remote attackers to inject arbitrary web script or HTML via the (1) error_meldung parameter to admin/features/regis…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2980
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257494
|
- |
|
homeph_design
|
homeph_design
|
PHP remote file inclusion vulnerability in admin/templates/template_thumbnail.php in HomePH Design 2.10 RC2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code vi…
|
CWE-94
Code Injection
|
CVE-2008-2981
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257495
|
- |
|
homeph_design
|
homeph_design
|
Multiple directory traversal vulnerabilities in HomePH Design 2.10 RC2, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via directory traversal s…
|
CWE-22
Path Traversal
|
CVE-2008-2982
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257496
|
- |
|
cwh_underground
|
demo4_cms
|
SQL injection vulnerability in index.php in Demo4 CMS 01 Beta allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2983
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257497
|
- |
|
cmreams
|
cmreams_cms
|
Cross-site scripting (XSS) vulnerability in backend/umleitung.php in CMReams CMS 1.3.1.1 Beta 2 allows remote attackers to inject arbitrary web script or HTML via the lang[be_red_text] parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-2984
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257498
|
- |
|
cmreams
|
cmreams_cms
|
Directory traversal vulnerability in load_language.php in CMReams CMS 1.3.1.1 Beta 2, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via direct…
|
CWE-22
Path Traversal
|
CVE-2008-2985
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257499
|
- |
|
phpdmca
|
phpdmca
|
Multiple PHP remote file inclusion vulnerabilities in phpDMCA 1.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the ourlinux_root_path parameter to (1) adodb-errorpear.inc.php a…
|
CWE-94
Code Injection
|
CVE-2008-2986
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257500
|
- |
|
homap
|
homap
|
SQL injection vulnerability in index.php in HoMaP-CMS 0.1 allows remote attackers to execute arbitrary SQL commands via the go parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2989
|
2017-09-29 10:31 |
2008-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|