|
260831
|
- |
|
gforge
|
gforge
|
SQL injection vulnerability in Gforge 4.6.99 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified parameters, related to RSS exports.
|
CWE-89
SQL Injection
|
CVE-2008-0173
|
2017-08-8 10:29 |
2008-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260832
|
- |
|
compaq
|
2210_series_bios
2510_series_bios
2710_series_bios
6510_series_bios
6515_series_bios
6520_series_bios
6710_series_bios
6715_series_bios
6720_series_bios
6820_series_bios
Unspecified vulnerability in the BIOS F.04 through F.11 for the HP Compaq Business Notebook PC allows local users to cause a denial of service via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2008-0211
|
2017-08-8 10:29 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
260833
|
- |
|
freebsd
|
freebsd
|
The ptsname function in FreeBSD 6.0 through 7.0-PRERELEASE does not properly verify that a certain portion of a device name is associated with a pty of a user who is calling the pt_chown function, wh…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0216
|
2017-08-8 10:29 |
2008-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260834
|
- |
|
freebsd
|
freebsd
|
The script program in FreeBSD 5.0 through 7.0-PRERELEASE invokes openpty, which creates a pseudo-terminal with world-readable and world-writable permissions when it is not run as root, which allows l…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0217
|
2017-08-8 10:29 |
2008-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260835
|
- |
|
merak
|
icewarp_mail_server
|
Cross-site scripting (XSS) vulnerability in admin/index.html in Merak IceWarp Mail Server allows remote attackers to inject arbitrary web script or HTML via the message parameter. NOTE: the provenan…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0218
|
2017-08-8 10:29 |
2008-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260836
|
- |
|
justsystem
|
ichitaro
ichitaro_lite2
ichitaro_viewer
|
Buffer overflow in JustSystems JSFC.DLL, as used in multiple JustSystems products such as Ichitaro, allows remote attackers to execute arbitrary code via a crafted .JTD file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0223
|
2017-08-8 10:29 |
2008-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260837
|
- |
|
ibm
|
lotus_domino
|
Unspecified vulnerability in Lotus Domino 7.0.2 before Fix Pack 3 allows attackers to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2008-0243
|
2017-08-8 10:29 |
2008-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260838
|
- |
|
photopost
|
photopost_vbgallery
|
Unrestricted file upload vulnerability in PhotoPost vBGallery before 2.4.2 allows remote attackers to upload and execute arbitrary files via unknown vectors.
|
CWE-94
CWE-20
Code Injection
Improper Input Validation
|
CVE-2008-0251
|
2017-08-8 10:29 |
2008-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260839
|
- |
|
dansie
|
search_engine
|
Cross-site scripting (XSS) vulnerability in search.pl in Dansie Search Engine 2.7 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter. NOTE: the provenance of t…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0257
|
2017-08-8 10:29 |
2008-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260840
|
- |
|
php_running_management
|
phprunman
|
Cross-site scripting (XSS) vulnerability in index.php in PHP Running Management (phpRunMan) before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0258
|
2017-08-8 10:29 |
2008-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
