|
257171
|
- |
|
danneo
|
cms
|
SQL injection vulnerability in index.php in Danneo CMS 0.5.1 and earlier, when the Referers statistics option is enabled, allows remote attackers to execute arbitrary SQL commands via the HTTP Refere…
|
CWE-89
SQL Injection
|
CVE-2008-1513
|
2017-09-29 10:30 |
2008-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257172
|
- |
|
matti_kiviharju
|
rekry_component
|
SQL injection vulnerability in the Matti Kiviharju rekry (aka com_rekry or rekry!Joom) 1.0.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the op_id parameter in…
|
CWE-89
CWE-20
SQL Injection
Improper Input Validation
|
CVE-2008-1535
|
2017-09-29 10:30 |
2008-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257173
|
- |
|
futurenuke
|
php_nuke_platinum
|
SQL injection vulnerability in includes/dynamic_titles.php in PHP-Nuke Platinum 7.6.b.5 allows remote attackers to execute arbitrary SQL commands via the p parameter to modules.php for the Forums mod…
|
CWE-89
SQL Injection
|
CVE-2008-1539
|
2017-09-29 10:30 |
2008-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257174
|
- |
|
topper
|
toppermod
|
Directory traversal vulnerability in mod.php in TopperMod 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the to parameter.
|
CWE-22
Path Traversal
|
CVE-2008-1553
|
2017-09-29 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257175
|
- |
|
mplayer
|
mplayer
|
Uncontrolled array index in the sdpplin_parse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to overwrite memory and execute arbitrary code via a large streamid SDP …
|
CWE-189
Numeric Errors
|
CVE-2008-1558
|
2017-09-29 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257176
|
- |
|
bernard_gilly
|
com_alphacontent
|
SQL injection vulnerability in the Bernard Gilly AlphaContent (com_alphacontent) 2.5.8 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view a…
|
CWE-89
SQL Injection
|
CVE-2008-1559
|
2017-09-29 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257177
|
- |
|
postnuke
|
postnuke
|
The pnVarPrepForStore function in PostNuke 0.764 and earlier skips input sanitization when magic_quotes_runtime is enabled, which allows remote attackers to conduct SQL injection attacks and execute …
|
CWE-89
SQL Injection
|
CVE-2008-1591
|
2017-09-29 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257178
|
- |
|
ibm
|
aix
|
The checkpoint and restart feature in the kernel in IBM AIX 5.2, 5.3, and 6.1 does not properly protect kernel memory, which allows local users to read and modify portions of memory and gain privileg…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1593
|
2017-09-29 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257179
|
- |
|
ibm
|
aix
|
The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial o…
|
NVD-CWE-Other
|
CVE-2008-1594
|
2017-09-29 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257180
|
- |
|
ibm
|
aix
|
The proc filesystem in the kernel in IBM AIX 5.2 and 5.3 does not properly enforce directory permissions when a file executing from a directory has weaker permissions than the directory itself, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1595
|
2017-09-29 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
