|
256741
|
- |
|
siteman
|
siteman
|
Directory traversal vulnerability in index.php in Siteman 2.0.x2 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
|
CWE-22
Path Traversal
|
CVE-2008-2081
|
2017-09-29 10:31 |
2008-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256742
|
- |
|
siteman
|
siteman
|
Cross-site scripting (XSS) vulnerability in index.php in Siteman 2.0.x2 allows remote attackers to inject arbitrary web script or HTML via the module parameter, which leaks the path in an error messa…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2082
|
2017-09-29 10:31 |
2008-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256743
|
- |
|
myarticles
runcms
|
myarticles
myarticles_module
|
SQL injection vulnerability in topics.php in the MyArticles 0.6 beta-1 module for RunCMS allows remote attackers to execute arbitrary SQL commands via the topic_id parameter in a listarticles action.
|
CWE-89
SQL Injection
|
CVE-2008-2084
|
2017-09-29 10:31 |
2008-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256744
|
- |
|
phpforge
|
php_forge
|
SQL injection vulnerability in admin/news.php in PHP Forge 3.0 beta 2 allows remote attackers to execute arbitrary SQL commands via the id parameter in the news module to admin.php.
|
CWE-89
SQL Injection
|
CVE-2008-2088
|
2017-09-29 10:31 |
2008-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256745
|
- |
|
sun
|
solaris
|
Unspecified vulnerability in the SCTP protocol implementation in Sun Solaris 10 allows remote attackers to cause a denial of service (panic) via a crafted SCTP packet.
|
CWE-16
Configuration
|
CVE-2008-2089
|
2017-09-29 10:31 |
2008-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256746
|
- |
|
sun
|
solaris
|
Unspecified vulnerability in the SCTP protocol implementation in Sun Solaris 10 allows remote attackers to cause a denial of service (CPU consumption and network traffic amplification) via a crafted …
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-2090
|
2017-09-29 10:31 |
2008-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256747
|
- |
|
kubelabs
|
kubelance
|
Directory traversal vulnerability in ipn.php in KubeLabs Kubelance 1.6.4 allows remote attackers to include and execute arbitrary local files via the i parameter.
|
CWE-22
Path Traversal
|
CVE-2008-2091
|
2017-09-29 10:31 |
2008-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256748
|
- |
|
joomla
joomlapolis
mambo
|
com_comprofiler
community_builder
|
SQL injection vulnerability in the Profiler (com_comprofiler) component in Community Builder for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the user parameter in …
|
CWE-89
SQL Injection
|
CVE-2008-2093
|
2017-09-29 10:31 |
2008-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256749
|
- |
|
joomla
mambo
page-flip-tools
|
com_flippingbook
flipping_book
|
SQL injection vulnerability in index.php in the FlippingBook (com_flippingbook) 1.0.4 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the book_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2095
|
2017-09-29 10:31 |
2008-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256750
|
- |
|
phpeasydata
|
phpeasydata
|
SQL injection vulnerability in annuaire.php in PHPEasyData 1.5.4 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2113
|
2017-09-29 10:31 |
2008-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
