|
262321
|
- |
|
avaya
|
sip_enablement_services
communication_manager
|
Multiple unspecified vulnerabilities in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, allow remote attackers to obta…
|
NVD-CWE-noinfo
|
CVE-2008-6706
|
2017-08-17 10:29 |
2009-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262322
|
- |
|
avaya
|
sip_enablement_services
communication_manager
|
The Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, does not perform authentication for certain functionality, which allow…
|
CWE-287
Improper Authentication
|
CVE-2008-6707
|
2017-08-17 10:29 |
2009-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262323
|
- |
|
avaya
|
communication_manager
sip_enablement_services
|
Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x and 4.x, allows remote authenticated admin…
|
NVD-CWE-noinfo
|
CVE-2008-6708
|
2017-08-17 10:29 |
2009-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262324
|
- |
|
avaya
|
sip_enablement_services
communication_manager
|
Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, allows remote authenticated users to exec…
|
NVD-CWE-noinfo
|
CVE-2008-6709
|
2017-08-17 10:29 |
2009-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262325
|
- |
|
avaya
|
communication_manager
|
Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain ro…
|
NVD-CWE-noinfo
|
CVE-2008-6710
|
2017-08-17 10:29 |
2009-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262326
|
- |
|
avaya
|
communication_manager
|
Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated users to execute arbitrar…
|
NVD-CWE-noinfo
|
CVE-2008-6711
|
2017-08-17 10:29 |
2009-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262327
|
- |
|
patrick_matthai
|
pnopaste
|
Cross-site scripting (XSS) vulnerability in index.pl in Perl Nopaste 1.0 allows remote attackers to inject arbitrary web script or HTML via the language parameter. NOTE: some of these details are ob…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6724
|
2017-08-17 10:29 |
2009-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262328
|
- |
|
dotnetnuke
|
dotnetnuke
|
Cross-site scripting (XSS) vulnerability in the Language skin object in DotNetNuke before 4.8.4 allows remote attackers to inject arbitrary web script or HTML via "newly generated paths."
|
CWE-79
Cross-site Scripting
|
CVE-2008-6732
|
2017-08-17 10:29 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262329
|
- |
|
dotnetnuke
|
dotnetnuke
|
Cross-site scripting (XSS) vulnerability in the error handling page in DotNetNuke 4.6.2 through 4.8.3 allows remote attackers to inject arbitrary web script or HTML via the querystring parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6733
|
2017-08-17 10:29 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262330
|
- |
|
ea
|
crysis
|
Crysis 1.21 and earlier allows remote attackers to obtain sensitive player information such as real IP addresses by sending a keyexchange packet without a previous join packet, which causes Crysis to…
|
CWE-200
Information Exposure
|
CVE-2008-6737
|
2017-08-17 10:29 |
2009-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
