|
258211
|
- |
|
comdev
|
comdev_news_publisher
|
SQL injection vulnerability in home.news.php in Comdev News Publisher 4.1.2 allows remote attackers to execute arbitrary SQL commands via the arcmonth parameter. NOTE: some of these details are obta…
|
CWE-89
SQL Injection
|
CVE-2008-1872
|
2017-09-29 10:30 |
2008-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258212
|
- |
|
xpoze
|
xpoze_pro
|
SQL injection vulnerability in account/user/mail.html in Xpoze Pro 3.05 and earlier allows remote authenticated users to execute arbitrary SQL commands via the reed parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1874
|
2017-09-29 10:30 |
2008-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258213
|
- |
|
terong
|
advanced_web_photo_gallery
|
SQL injection vulnerability in index.php in Terong PHP Photo Gallery (aka Advanced Web Photo Gallery) 1.0 allows remote attackers to execute arbitrary SQL commands via the photo_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1875
|
2017-09-29 10:30 |
2008-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258214
|
- |
|
snarky
|
visualpic
|
PHP remote file inclusion vulnerability in index.php in VisualPic 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the _CONFIG[files][functions_page] parameter.
|
CWE-94
Code Injection
|
CVE-2008-1876
|
2017-09-29 10:30 |
2008-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258215
|
- |
|
xine
|
xine-lib
|
Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service (crash) and possibly e…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1878
|
2017-09-29 10:30 |
2008-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258216
|
- |
|
videolan
|
vlc
|
Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1881
|
2017-09-29 10:30 |
2008-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258217
|
- |
|
cdnetworks
|
download_client
|
Directory traversal vulnerability in the NeffyLauncher 1.0.5 ActiveX control (NeffyLauncher.dll) in CDNetworks Nefficient Download allows remote attackers to download arbitrary code onto a client sys…
|
CWE-22
Path Traversal
|
CVE-2008-1885
|
2017-09-29 10:30 |
2008-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258218
|
- |
|
cdnetworks
|
download_client
|
The NeffyLauncher 1.0.5 ActiveX control (NeffyLauncher.dll) in CDNetworks Nefficient Download uses weak cryptography for a KeyCode that blocks unauthorized use of the control, which allows remote att…
|
CWE-310
Cryptographic Issues
|
CVE-2008-1886
|
2017-09-29 10:30 |
2008-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258219
|
- |
|
xplodphp
|
autotutorials
|
SQL injection vulnerability in viewcat.php in XplodPHP AutoTutorials 2.1 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-1889
|
2017-09-29 10:30 |
2008-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258220
|
- |
|
newanz
|
newsoffice
|
PHP remote file inclusion vulnerability in news_show.php in Newanz NewsOffice 1.0 and 1.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the new…
|
CWE-94
Code Injection
|
CVE-2008-1903
|
2017-09-29 10:30 |
2008-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
