|
263661
|
- |
|
typo3
|
sql_frontend_extension
|
Unspecified vulnerability in the SQL Frontend (mh_omsqlio) extension 1.0.11 and earlier for TYPO3 allows remote attackers to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-3052
|
2017-08-8 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263662
|
- |
|
typo3
|
sql_frontend_extension
|
SQL injection vulnerability in the SQL Frontend (mh_omsqlio) extension 1.0.11 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-3053
|
2017-08-8 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263663
|
- |
|
typo3
|
branchenbuch_extension
|
SQL injection vulnerability in the Branchenbuch (aka Yellow Pages o (mh_branchenbuch) extension 0.8.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified v…
|
CWE-89
SQL Injection
|
CVE-2008-3054
|
2017-08-8 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263664
|
- |
|
typo3
|
support_view_extension
|
SQL injection vulnerability in the Support view (ext_tbl) extension 0.0.102 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-3055
|
2017-08-8 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263665
|
- |
|
typo3
|
codeon_petition_extension
|
SQL injection vulnerability in the Codeon Petition (cd_petition) extension 0.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-3056
|
2017-08-8 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263666
|
- |
|
octeth
|
oempro
|
Octeth Oempro 3.5.5.1, and possibly other versions before 4, does not set the secure flag for the PHPSESSID cookie in an https session, which makes it easier for remote attackers to capture this cook…
|
CWE-310
Cryptographic Issues
|
CVE-2008-3057
|
2017-08-8 10:31 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263667
|
- |
|
octeth
|
oempro
|
Multiple SQL injection vulnerabilities in Octeth Oempro 3.5.5.1, and possibly other versions before 4, allow remote attackers to execute arbitrary SQL commands via the FormValue_Email parameter (aka …
|
CWE-89
SQL Injection
|
CVE-2008-3058
|
2017-08-8 10:31 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263668
|
- |
|
octeth
|
oempro
|
member/settings_account.php in Octeth Oempro 3.5.5.1, and possibly other versions before 4, uses cleartext to transmit a password entered in the FormValue_Password field, which makes it easier for re…
|
CWE-255
Credentials Management
|
CVE-2008-3059
|
2017-08-8 10:31 |
2008-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263669
|
- |
|
v-webmail
|
v-webmail
|
V-webmail 1.5.0 allows remote attackers to obtain sensitive information via (1) malformed input in the login page (includes/local.hooks.php) and (2) an invalid session ID, which reveals the installat…
|
CWE-200
Information Exposure
|
CVE-2008-3060
|
2017-08-8 10:31 |
2008-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263670
|
- |
|
v-webmail
|
v-webmail
|
Open redirect vulnerability in redirect.php in V-webmail 1.5.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the to parameter.
|
NVD-CWE-Other
|
CVE-2008-3061
|
2017-08-8 10:31 |
2008-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
