|
261611
|
- |
|
openvpn
|
openvpn
|
Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted (1) lladdr and (2) iproute config…
|
NVD-CWE-noinfo
CWE-16
Configuration
|
CVE-2008-3459
|
2017-08-8 10:31 |
2008-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261612
|
- |
|
openvpn
|
openvpn
|
The following events must take place for successful exploitation:
1) the client has agreed to allow the server to push configuration directives to it by including "pull" or the macro "client" in its…
|
NVD-CWE-noinfo
CWE-16
Configuration
|
CVE-2008-3459
|
2017-08-8 10:31 |
2008-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261613
|
- |
|
panasonic
|
bb_hcm511
bb_hcm515
bb_hcm527
bb_hcm531
bb_hcm580
bb_hcm581
bl_c111
bl_c131
|
Cross-site scripting (XSS) vulnerability in the error page feature in Panasonic Network Camera BL-C111, BL-C131, BB-HCM511, BB-HCM531, BB-HCM580, BB-HCM581, BB-HCM527, and BB-HCM515 allows remote att…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3482
|
2017-08-8 10:31 |
2008-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261614
|
- |
|
screwturn
|
screwturn_wiki
|
Cross-site scripting (XSS) vulnerability in ScrewTurn Wiki 2.0.29 and 2.0.30 allows remote attackers to inject arbitrary web script or HTML via error messages in the "/admin.aspx - System Log" page.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3483
|
2017-08-8 10:31 |
2008-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261615
|
- |
|
aspindir
|
pcshey_portal
|
SQL injection vulnerability in kategori.asp in Pcshey Portal allows remote attackers to execute arbitrary SQL commands via the kid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3495
|
2017-08-8 10:31 |
2008-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261616
|
- |
|
ektron
|
cms4000.net
|
Unspecified vulnerability in "a page in the workarea folder" in Ektron CMS400.NET 7.00 through 7.04 and 7.50 through 7.52 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2008-3499
|
2017-08-8 10:31 |
2008-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261617
|
- |
|
drupal
|
suggested_terms_module
|
Cross-site scripting (XSS) vulnerability in the Suggested Terms module 5.x before 5.x-1.2 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via crafted Taxonomy term…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3500
|
2017-08-8 10:31 |
2008-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261618
|
- |
|
novell
|
groupwise
|
Cross-site scripting (XSS) vulnerability in the WebAccess simple interface in Novell Groupwise 7.0.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3501
|
2017-08-8 10:31 |
2008-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261619
|
- |
|
bestpractical
|
rt
|
Unspecified vulnerability in Best Practical Solutions RT 3.0.0 through 3.6.6 allows remote authenticated users to cause a denial of service (CPU or memory consumption) via unspecified vectors related…
|
NVD-CWE-noinfo
|
CVE-2008-3502
|
2017-08-8 10:31 |
2008-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261620
|
- |
|
webgui
|
plain_black_webgui
|
RSSFromParent in Plain Black WebGUI before 7.5.13 does not restrict view access to Collaboration System (CS) RSS feeds, which allows remote attackers to obtain sensitive information (CS data).
|
CWE-287
Improper Authentication
|
CVE-2008-3503
|
2017-08-8 10:31 |
2008-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
