|
257251
|
- |
|
openoffice
|
openoffice.org
|
Heap-based buffer overflow in OpenOffice.org (OOo) 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted WMF file associated with a StarOffice/StarSuite document.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2237
|
2017-09-29 10:31 |
2008-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257252
|
- |
|
openoffice
|
openoffice.org
|
Multiple integer overflows in OpenOffice.org (OOo) 2.x before 2.4.2 allow remote attackers to execute arbitrary code via crafted EMR records in an EMF file associated with a StarOffice/StarSuite docu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2238
|
2017-09-29 10:31 |
2008-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257253
|
- |
|
microsoft
|
office_word
|
Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a .doc file that contains malformed data, as exploited in the wild in July 2008, and as demonstrated by attachemen…
|
CWE-399
Resource Management Errors
|
CVE-2008-2244
|
2017-09-29 10:31 |
2008-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257254
|
- |
|
cmsnx
|
automated_link_exchange_portal
|
SQL injection vulnerability in linking.page.php in Automated Link Exchange Portal allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. NOTE: linking.page.php is common…
|
CWE-89
SQL Injection
|
CVE-2008-2263
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257255
|
- |
|
emophp
|
emo_realty_manager
|
SQL injection vulnerability in news.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the ida parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2265
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257256
|
- |
|
cms_made_simple
|
cms_made_simple
|
Incomplete blacklist vulnerability in javaUpload.php in Postlet in the FileManager module in CMS Made Simple 1.2.4 and earlier allows remote attackers to execute arbitrary code by uploading a file wi…
|
CWE-20
Improper Input Validation
|
CVE-2008-2267
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257257
|
- |
|
phpway
|
kostenloses_linkmanagementscript
|
Multiple PHP remote file inclusion vulnerabilities in PHPWAY Kostenloses Linkmanagementscript allow remote attackers to execute arbitrary PHP code via a URL in the (1) main_page_directory and (2) pag…
|
CWE-94
Code Injection
|
CVE-2008-2270
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257258
|
- |
|
matisbt
|
mantis
|
Cross-site request forgery (CSRF) vulnerability in manage_user_create.php in Mantis 1.1.1 allows remote attackers to create new administrative users via a crafted link.
|
CWE-352
Origin Validation Error
|
CVE-2008-2276
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257259
|
- |
|
cmsnx
|
feedback_and_rating_script
|
SQL injection vulnerability in detail.php in Feedback and Rating Script 1.0 allows remote attackers to execute arbitrary SQL commands via the listingid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2277
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257260
|
- |
|
freelanceauction
|
freelance_auction_script
|
SQL injection vulnerability in browseproject.php in Freelance Auction Script 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter in a pdetails action.
|
CWE-89
SQL Injection
|
CVE-2008-2278
|
2017-09-29 10:31 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
