|
260781
|
- |
|
apple
|
mac_os_x_server
|
slapconfig in Directory Services in Apple Mac OS X 10.5 through 10.5.4 allows local users to select a readable output file into which the server password will be written by an OpenLDAP system adminis…
|
CWE-200
Information Exposure
|
CVE-2008-2330
|
2017-08-8 10:30 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260782
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Finder in Apple Mac OS X 10.5 through 10.5.4 does not properly update permission data in the Get Info window after a lock operation that modifies Sharing & Permissions in a filesystem, which might al…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2331
|
2017-08-8 10:30 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260783
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
ImageIO in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a cra…
|
CWE-399
Resource Management Errors
|
CVE-2008-2332
|
2017-08-8 10:30 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260784
|
- |
|
aspindir
|
philboard
|
Multiple SQL injection vulnerabilities in W1L3D4 Philboard 0.5 allow remote attackers to execute arbitrary SQL commands via the (1) forumid parameter to (a) admin/philboard_admin-forumedit.asp, (b) a…
|
CWE-89
SQL Injection
|
CVE-2008-2334
|
2017-08-8 10:30 |
2008-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260785
|
- |
|
typo3
|
air_filemanager
|
Cross-site scripting (XSS) vulnerability in the air_filemanager 0.6.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-2344
|
2017-08-8 10:30 |
2008-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260786
|
- |
|
typo3
|
air_filemanager
|
Unspecified vulnerability in the air_filemanager 0.6.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary PHP code via unspecified vectors related to "insufficient file filt…
|
CWE-94
Code Injection
|
CVE-2008-2345
|
2017-08-8 10:30 |
2008-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260787
|
- |
|
bcoos
|
bcoos
|
Directory traversal vulnerability in highlight.php in bcoos 1.0.9 through 1.0.13 allows remote attackers to read arbitrary files via (1) .. (dot dot) or (2) C: folder sequences in the file parameter.
|
CWE-22
Path Traversal
|
CVE-2008-2350
|
2017-08-8 10:30 |
2008-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260788
|
- |
|
testmaker
|
testmaker
|
Unspecified vulnerability in the data export function in testMaker before 3.0p10 allows test authors to obtain access to export data via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2008-2354
|
2017-08-8 10:30 |
2008-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260789
|
- |
|
fedora_8
redhat
|
consolehelper
fedora_8
|
The default configuration of consolehelper in system-config-network before 1.5.10-1 on Fedora 8 lacks the USER=root directive, which allows local users of the workstation console to gain privileges a…
|
CWE-16
Configuration
|
CVE-2008-2359
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260790
|
- |
|
pan
|
pan
|
The PartsBatch class in Pan 0.132 and earlier does not properly manage the data structures for Parts batches, which allows remote attackers to cause a denial of service (application crash) and possib…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2363
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
