|
261641
|
- |
|
zoneo-soft
|
freeforum
|
Cross-site scripting (XSS) vulnerability in ZoneO-soft freeForum 1.7 allows remote attackers to inject arbitrary web script or HTML via the acuparam parameter to (1) the default URI or (2) index.php,…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3566
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261642
|
- |
|
pligg
|
pligg_cms
|
Cross-site scripting (XSS) vulnerability in index.php in Pligg 9.9.5 allows remote attackers to inject arbitrary web script or HTML via the category parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3572
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261643
|
- |
|
php-nuke
pligg
|
php-nuke
pligg
|
The CAPTCHA implementation in (1) Pligg 9.9.5 and possibly (2) Francisco Burzi PHP-Nuke 8.1 provides a critical random number (the ts_random value) within the URL in the SRC attribute of an IMG eleme…
|
CWE-189
CWE-264
Numeric Errors
Permissions, Privileges, and Access Controls
|
CVE-2008-3573
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261644
|
- |
|
openttd
|
openttd
|
Buffer overflow in the TruncateString function in src/gfx.cpp in OpenTTD before 0.6.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a craf…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3576
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261645
|
- |
|
openttd
|
openttd
|
Buffer overflow in src/openttd.cpp in OpenTTD before 0.6.2 allows local users to execute arbitrary code via a large filename supplied to the "-g" parameter in the ttd_main function. NOTE: it is unli…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3577
|
2017-08-8 10:31 |
2008-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261646
|
- |
|
imagevue
|
imagevue
|
Multiple cross-site scripting (XSS) vulnerabilities in imageVue 1.7 allow remote attackers to inject arbitrary web script or HTML via the path parameter to (1) popup.php, (2) test/dir2.php, (3) admin…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1273
|
2017-08-8 10:30 |
2008-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261647
|
- |
|
b21soft
|
bfup
|
Buffer overflow in the BFup ActiveX control (BFup.dll) in B21Soft BFup before 1.0.802.29 allows remote attackers to execute arbitrary code via a long FilePath parameter.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1282
|
2017-08-8 10:30 |
2008-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261648
|
- |
|
sun
|
jsf
|
Cross-site scripting (XSS) vulnerability in Sun Java Server Faces (JSF) 1.2 before 1.2_08 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-1285
|
2017-08-8 10:30 |
2008-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261649
|
- |
|
sun
|
java_web_console
|
Unspecified vulnerability in Sun Java Web Console 3.0.2, 3.0.3, and 3.0.4 allows remote attackers to bypass intended access restrictions and determine the existence of files or directories via unknow…
|
NVD-CWE-noinfo
|
CVE-2008-1286
|
2017-08-8 10:30 |
2008-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261650
|
- |
|
ibm
|
rational_clearquest
|
IBM Rational ClearQuest 7.0.1.1 and 7.0.0.2 generates different error messages depending on whether the username is valid or invalid, which allows remote attackers to enumerate usernames.
|
CWE-16
Configuration
|
CVE-2008-1287
|
2017-08-8 10:30 |
2008-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
