|
256771
|
- |
|
entertainmentscript
|
entertainmentscript
|
Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.
|
CWE-22
Path Traversal
|
CVE-2008-2459
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256772
|
- |
|
netious
|
netious_cms
|
SQL injection vulnerability in index.php in Netious CMS 0.4 allows remote attackers to execute arbitrary SQL commands via the pageid parameter, a different vector than CVE-2006-4047.
|
CWE-89
SQL Injection
|
CVE-2008-2461
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256773
|
- |
|
microsoft
|
office_snapshot_viewer_activex
|
The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attacke…
|
CWE-94
Code Injection
|
CVE-2008-2463
|
2017-09-29 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256774
|
- |
|
libspf
|
libspf2
|
Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modifie…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2469
|
2017-09-29 10:31 |
2008-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256775
|
- |
|
force10
freebsd
juniper
netbsd
openbsd
windriver
|
ftos
freebsd
jnos
netbsd
openbsd
vxworks
|
The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River …
|
CWE-20
Improper Input Validation
|
CVE-2008-2476
|
2017-09-29 10:31 |
2008-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256776
|
- |
|
mx-system
|
mxbb_portal
|
SQL injection vulnerability in index.php in MxBB (aka MX-System) Portal 2.7.3 allows remote attackers to execute arbitrary SQL commands via the page parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2477
|
2017-09-29 10:31 |
2008-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256777
|
- |
|
plusphp
|
plusphp_short_url_multi-user_script
|
PHP remote file inclusion vulnerability in plus.php in plusPHP Short URL Multi-User Script 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the _pages_dir parameter.
|
CWE-94
Code Injection
|
CVE-2008-2480
|
2017-09-29 10:31 |
2008-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256778
|
- |
|
phpraider
|
phpraider
|
PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote attackers to execute arbitrary PHP…
|
CWE-94
Code Injection
|
CVE-2008-2481
|
2017-09-29 10:31 |
2008-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256779
|
- |
|
xomol
|
xomol_cms
|
Directory traversal vulnerability in index.php in Xomol CMS 1.20071213 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the op parameter.
|
CWE-22
Path Traversal
|
CVE-2008-2483
|
2017-09-29 10:31 |
2008-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256780
|
- |
|
xomol
|
xomol_cms
|
SQL injection vulnerability in index.php in Xomol CMS 1.20071213, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the email parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2484
|
2017-09-29 10:31 |
2008-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
