|
261611
|
- |
|
bugtracker.net
|
bugtracker.net
|
Cross-site scripting (XSS) vulnerability in BugTracker.NET before 2.7.2 allows remote attackers to inject arbitrary web script or HTML via an arbitrary custom text field.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0335
|
2017-08-8 10:29 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261612
|
- |
|
bugtracker.net
|
bugtracker.net
|
Multiple cross-site request forgery (CSRF) vulnerabilities in BugTracker.NET before 2.7.2 allow remote attackers to delete arbitrary bugs and perform other administrative tasks via unspecified vector…
|
CWE-352
Origin Validation Error
|
CVE-2008-0336
|
2017-08-8 10:29 |
2008-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261613
|
- |
|
ibm
|
lotus_sametime
|
Cross-site scripting (XSS) vulnerability in the chat client in IBM Lotus Sametime 7.5 and 7.5.1 allows user-assisted remote attackers to inject arbitrary web script or HTML via a crafted message, whi…
|
CWE-79
Cross-site Scripting
|
CVE-2008-0354
|
2017-08-8 10:29 |
2008-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261614
|
- |
|
ibm
|
informix_dynamic_server
|
onedcu in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allows local users to create arbitrary files via the Trace file argument.
|
NVD-CWE-noinfo
|
CVE-2008-0368
|
2017-08-8 10:29 |
2008-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261615
|
- |
|
ibm
|
informix_dynamic_server
|
Multiple unspecified programs in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allow local users to create arbitrary files by specifying the target file in the SQLIDEBUG environment variabl…
|
NVD-CWE-noinfo
|
CVE-2008-0369
|
2017-08-8 10:29 |
2008-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261616
|
- |
|
ibm
|
websphere_application_server
|
Unspecified vulnerability in the serveServletsByClassnameEnabled feature in IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.25, 6.1 through 6.1.0.14, and 5.1.1.x before 5.1.1.18 has unknown …
|
NVD-CWE-noinfo
|
CVE-2008-0389
|
2017-08-8 10:29 |
2008-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261617
|
- |
|
ibm
|
tivoli_provisioning_manager_os_deployment
|
Buffer overflow in the logging functionality of the HTTP server in IBM Tivoli Provisioning Manager for OS Deployment (TPMfOSD) before 5.1.0.3 Interim Fix 3 allows remote attackers to cause a denial o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0401
|
2017-08-8 10:29 |
2008-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261618
|
- |
|
ibm
|
websphere_business_modeler
|
Unspecified vulnerability in IBM WebSphere Business Modeler Basic and Advanced 6.0.2.1 before Interim Fix 11 allows remote authenticated users to bypass intended access restrictions and delete unspec…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0402
|
2017-08-8 10:29 |
2008-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261619
|
- |
|
mantis
|
mantis
|
Cross-site scripting (XSS) vulnerability in Mantis before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to the "Most active bugs" summary.
|
CWE-79
Cross-site Scripting
|
CVE-2008-0404
|
2017-08-8 10:29 |
2008-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261620
|
- |
|
ibm
|
tivoli_business_service_manager
|
IBM Tivoli Business Service Manager (TBSM) 4.1.1 stores passwords in cleartext (1) after external authentication, which triggers writing the password to SM_server.log; and (2) after a reconfig action…
|
NVD-CWE-Other
|
CVE-2008-0441
|
2017-08-8 10:29 |
2008-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
