|
263421
|
- |
|
opera
|
opera_browser
|
Opera before 9.52 does not prevent use of links from web pages to feed source files on the local disk, which might allow remote attackers to determine the validity of local filenames via vectors invo…
|
CWE-200
Information Exposure
|
CVE-2008-4199
|
2017-08-8 10:32 |
2008-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263422
|
- |
|
opera
|
opera_browser
|
Opera before 9.52 does not ensure that the address field of a news feed represents the feed's actual URL, which allows remote attackers to change this field to display the URL of a page containing we…
|
CWE-20
Improper Input Validation
|
CVE-2008-4200
|
2017-08-8 10:32 |
2008-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263423
|
- |
|
osads_alliance_database
|
osads_alliance_database
|
Unspecified vulnerability in OSADS Alliance Database before 2.1 has unknown impact and attack vectors, possibly related to includes/functions.php, a different issue than CVE-2006-2874.
|
NVD-CWE-noinfo
|
CVE-2008-4208
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263424
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in rlogind in the rlogin component in Mac OS X 10.4.11 and 10.5.5 applies hosts.equiv entries to root despite what is stated in documentation, which might allow remote attac…
|
CWE-16
Configuration
|
CVE-2008-4212
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263425
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local users to cause the scripting dictionary to be written to arbitrary locations, related to an "insecure file opera…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4214
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263426
|
- |
|
apple
|
mac_os_x_server
|
Weblog in Mac OS X Server 10.4.11 does not properly check an error condition when a weblog posting access control list is specified for a user that has multiple short names, which might allow attacke…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4215
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263427
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Incomplete blacklist vulnerability in the Quarantine feature in CoreTypes in Apple Mac OS X 10.5 before 10.5.6 allows user-assisted remote attackers to execute arbitrary code via an executable file w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4234
|
2017-08-8 10:32 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263428
|
- |
|
proftpd_project
|
proftpd
|
ProFTPD 1.3.1 interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and execute arbitrary FTP commands v…
|
CWE-352
Origin Validation Error
|
CVE-2008-4242
|
2017-08-8 10:32 |
2008-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263429
|
- |
|
ibm
|
websphere_application_server
|
CRLF injection vulnerability in the WebContainer component in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.1.x versions allows remote attackers to inject arbitrary HTTP headers and c…
|
CWE-20
Improper Input Validation
|
CVE-2008-4283
|
2017-08-8 10:32 |
2009-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263430
|
- |
|
ibm
|
websphere_application_server
|
Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows rem…
|
CWE-59
Link Following
|
CVE-2008-4284
|
2017-08-8 10:32 |
2009-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
