|
257311
|
- |
|
opensiteadmin
|
opensiteadmin
|
Multiple PHP remote file inclusion vulnerabilities in OpenSiteAdmin 0.9.1.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the path parameter to (1) indexFooter.php; an…
|
CWE-94
Code Injection
|
CVE-2008-0648
|
2017-09-29 10:30 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257312
|
- |
|
adp
|
astanda_directory_project
|
SQL injection vulnerability in detail.php in Astanda Directory Project (ADP) 1.2 and 1.3 allows remote attackers to execute arbitrary SQL commands via the link_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-0649
|
2017-09-29 10:30 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257313
|
- |
|
joomla
mambo
|
com_downloads
|
SQL injection vulnerability in index.php in the Downloads (com_downloads) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the filecatid parameter in a se…
|
CWE-89
SQL Injection
|
CVE-2008-0652
|
2017-09-29 10:30 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257314
|
- |
|
joomla
|
com_ynews
|
SQL injection vulnerability in index.php in the Ynews (com_ynews) 1.0.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showYNews action.
|
CWE-89
SQL Injection
|
CVE-2008-0653
|
2017-09-29 10:30 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257315
|
- |
|
sun
|
jre
jdk
|
Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0657
|
2017-09-29 10:30 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257316
|
- |
|
aurigma
myspace
|
image_uploader_activex_control
myspaceuploader
|
Stack-based buffer overflow in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.5.70 and earlier, as used in MySpace MySpaceUploader.ocx 1.0.0.4, allows remote attackers to execute arbit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0659
|
2017-09-29 10:30 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257317
|
- |
|
aurigma
facebook
|
image_uploader_activex_control
facebook
photouploader
|
Multiple stack-based buffer overflows in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.6.17.0, 4.5.70.0, and 4.5.126.0, and ImageUploader5 5.0.10.0, as used by Facebook PhotoUploader …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0660
|
2017-09-29 10:30 |
2008-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257318
|
- |
|
joomla
|
com_noticias
|
SQL injection vulnerability in index.php in the Noticias (com_noticias) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detalhe action.
|
CWE-89
SQL Injection
|
CVE-2008-0670
|
2017-09-29 10:30 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257319
|
- |
|
a-blog
|
a-blog
|
Cross-site scripting (XSS) vulnerability in search.php in A-Blog 2 allows remote attackers to inject arbitrary web script or HTML via the words parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0676
|
2017-09-29 10:30 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257320
|
- |
|
a-blog
|
a-blog
|
SQL injection vulnerability in blog.php in A-Blog 2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a news action.
|
CWE-89
SQL Injection
|
CVE-2008-0677
|
2017-09-29 10:30 |
2008-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
