|
260421
|
- |
|
drupal
|
everyblog
|
EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to bypass access restrictions via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6137
|
2017-08-17 10:29 |
2009-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260422
|
- |
|
avaya
|
one-x
|
Unspecified vulnerability in the Session Initiation Protocol (SIP) implementation in Avaya one-X Desktop Edition 2.1.0.78 allows remote attackers to cause a denial of service (crash) via unspecified …
|
NVD-CWE-noinfo
|
CVE-2008-6140
|
2017-08-17 10:29 |
2009-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260423
|
- |
|
avaya
|
ip_soft_phone
|
Unspecified vulnerability in Avaya IP Softphone 6.0 SP4 and 6.01.85 allows remote attackers to cause a denial of service (crash) via a large amount of H.323 data.
|
CWE-399
Resource Management Errors
|
CVE-2008-6141
|
2017-08-17 10:29 |
2009-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260424
|
- |
|
hispah
|
text_links_ads
|
SQL injection vulnerability in index.php in Hispah Text Links Ads 1.1 allows remote attackers to execute arbitrary SQL commands via the idtl parameter in a buy action. NOTE: the provenance of this i…
|
CWE-89
SQL Injection
|
CVE-2008-6155
|
2017-08-17 10:29 |
2009-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260425
|
- |
|
w3bcms
|
w3b\>cms
|
Multiple unspecified vulnerabilities in the admin backend in w3b>cms (aka w3blabor CMS) before 3.2.0 have unknown impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2008-6158
|
2017-08-17 10:29 |
2009-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260426
|
- |
|
drupal
|
semantically_interconnected_online_communities
|
Semantically-Interconnected Online Communities (SIOC) 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, does not properly implement menu and database APIs, which allows remote attackers…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-6160
|
2017-08-17 10:29 |
2009-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260427
|
- |
|
drupal
|
localization_client
localization_server
|
Cross-site request forgery (CSRF) vulnerability in the Localization client 5.x before 5.x-1.1 and 6.x before 6.x-1.6 and the Localization server 5.x before 5.x-1.0-alpha5 and 6.x before 6.x-alpha2, m…
|
CWE-352
Origin Validation Error
|
CVE-2008-6169
|
2017-08-17 10:29 |
2009-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260428
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in Drupal 5.x before 5.12 and 6.x before 6.6 allows remote authenticated users with create book content or edit node book hierarchy permissions to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6170
|
2017-08-17 10:29 |
2009-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260429
|
- |
|
drupal
|
drupal
|
includes/bootstrap.inc in Drupal 5.x before 5.12 and 6.x before 6.6, when the server is configured for "IP-based virtual hosts," allows remote attackers to include and execute arbitrary files via the…
|
CWE-16
CWE-20
Configuration
Improper Input Validation
|
CVE-2008-6171
|
2017-08-17 10:29 |
2009-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260430
|
- |
|
clip-share
|
clipshare
|
Cross-site scripting (XSS) vulnerability in fullscreen.php in ClipShare Pro 4.0 allows remote attackers to inject arbitrary web script or HTML via the title parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6173
|
2017-08-17 10:29 |
2009-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
