|
257181
|
- |
|
wogan_may
|
litenews
|
LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3508
|
2017-09-29 10:31 |
2008-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257182
|
- |
|
lovecms
|
lovecms
|
LoveCMS 1.6.2 does not require administrative authentication for (1) addblock.php, (2) blocks.php, and (3) themes.php in system/admin/, which allows remote attackers to change the configuration or ex…
|
CWE-94
Code Injection
|
CVE-2008-3509
|
2017-09-29 10:31 |
2008-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257183
|
- |
|
jasper_project
|
jasper
|
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
|
CWE-189
Numeric Errors
|
CVE-2008-3520
|
2017-09-29 10:31 |
2008-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257184
|
- |
|
pidgin
|
pidgin
|
The NSS plugin in libpurple in Pidgin 2.4.3 does not verify SSL certificates, which makes it easier for remote attackers to trick a user into accepting an invalid server certificate for a spoofed ser…
|
CWE-310
Cryptographic Issues
|
CVE-2008-3532
|
2017-09-29 10:31 |
2008-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257185
|
- |
|
sun
|
opensolaris
solaris
|
Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown v…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-3549
|
2017-09-29 10:31 |
2008-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257186
|
- |
|
comsenz
|
discuz
|
SQL injection vulnerability in index.php in Discuz! 6.0.1 allows remote attackers to execute arbitrary SQL commands via the searchid parameter in a search action.
|
CWE-89
SQL Injection
|
CVE-2008-3554
|
2017-09-29 10:31 |
2008-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257187
|
- |
|
wsn
|
forum
gallery
knowledge_base
links
|
Directory traversal vulnerability in index.php in (1) WSN Forum 4.1.43 and earlier, (2) Gallery 4.1.30 and earlier, (3) Knowledge Base (WSNKB) 4.1.36 and earlier, (4) Links 4.1.44 and earlier, and po…
|
CWE-22
Path Traversal
|
CVE-2008-3555
|
2017-09-29 10:31 |
2008-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257188
|
- |
|
fhm-script
|
free_hosting_manager
|
Free Hosting Manager 1.2 and 2.0 allows remote attackers to bypass authentication and gain administrative access by setting both the adminuser and loggedin cookies.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3557
|
2017-09-29 10:31 |
2008-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257189
|
- |
|
cisco
|
webex_meeting_manager
|
Stack-based buffer overflow in the WebexUCFObject ActiveX control in atucfobj.dll in Cisco WebEx Meeting Manager before 20.2008.2606.4919 allows remote attackers to execute arbitrary code via a long …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3558
|
2017-09-29 10:31 |
2008-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257190
|
- |
|
dayfox_designs
|
dayfox_blog
|
Multiple directory traversal vulnerabilities in index.php in Dayfox Blog 4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) p, (2) cat, and (3) archiv…
|
CWE-22
Path Traversal
|
CVE-2008-3564
|
2017-09-29 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
