|
256871
|
- |
|
vangogh_web_cms
|
vangogh_web_cms
|
SQL injection vulnerability in get_article.php in VanGogh Web CMS 0.9 allows remote attackers to execute arbitrary SQL commands via the article_ID parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2008-3027
|
2017-09-29 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256872
|
- |
|
efes_tech_shop
|
efes_tech_shop
|
SQL injection vulnerability in default.asp in EfesTECH Shop 2.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in an urunler action.
|
CWE-89
SQL Injection
|
CVE-2008-3030
|
2017-09-29 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256873
|
- |
|
xchangeboard
|
xchangeboard
|
SQL injection vulnerability in newThread.php in XchangeBoard 1.70 Final and earlier allows remote authenticated users to execute arbitrary SQL commands via the boardID parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3035
|
2017-09-29 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256874
|
- |
|
cms_little
|
cms_little
|
Directory traversal vulnerability in index.php in CMS little 0.0.1 allows remote attackers to include and execute arbitrary local files, and probably remote files, via a .. (dot dot) in the template …
|
CWE-22
Path Traversal
|
CVE-2008-3036
|
2017-09-29 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256875
|
- |
|
vim
|
tar.vim
vim
|
The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" (exclamation point) shell metacharacter in (1) the filename of…
|
CWE-78
OS Command
|
CVE-2008-3074
|
2017-09-29 10:31 |
2009-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256876
|
- |
|
vim
|
vim
zipplugin.vim
|
The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" (exclamation point) shell metacharacter in (1) the filename of…
|
CWE-94
Code Injection
|
CVE-2008-3075
|
2017-09-29 10:31 |
2009-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256877
|
- |
|
mywebland
|
mybloggie
|
Cross-site request forgery (CSRF) vulnerability in admin.php in myWebland myBloggie 2.1.6 allows remote attackers to perform edit actions as administrators. NOTE: this can be leveraged to execute SQ…
|
CWE-352
Origin Validation Error
|
CVE-2008-3080
|
2017-09-29 10:31 |
2008-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256878
|
- |
|
brightcode
joomla
|
brightcode_weblinks_module
com_brightweblinks
|
SQL injection vulnerability in Brightcode Weblinks (com_brightweblinks) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3083
|
2017-09-29 10:31 |
2008-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256879
|
- |
|
kasseler-cms
|
kasseler_cms
|
Directory traversal vulnerability in Kasseler CMS 1.3.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to index.php, possibly related to the phpManual module.
|
CWE-22
Path Traversal
|
CVE-2008-3087
|
2017-09-29 10:31 |
2008-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256880
|
- |
|
kasseler-cms
|
kasseler_cms
|
Cross-site scripting (XSS) vulnerability in the Files module in Kasseler CMS 1.3.0 and 1.3.1 Lite allows remote attackers to inject arbitrary web script or HTML via the cid parameter in a Category ac…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3088
|
2017-09-29 10:31 |
2008-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
