|
256661
|
- |
|
alstrasoft
|
web_email_script_enterprise
|
SQL injection vulnerability in index.php in AlstraSoft Web Email Script Enterprise (ESE) allows remote attackers to execute arbitrary SQL commands via the id parameter in a directory action.
|
CWE-89
SQL Injection
|
CVE-2008-5751
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256662
|
- |
|
wordpress
|
page_flip_image_gallery_plugin
|
Directory traversal vulnerability in getConfig.php in the Page Flip Image Gallery plugin 0.2.2 and earlier for WordPress, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary …
|
CWE-22
Path Traversal
|
CVE-2008-5752
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256663
|
- |
|
bpftp
|
bulletproof_ftp_client
|
Stack-based buffer overflow in BulletProof FTP Client 2.63 and 2010 allows user-assisted attackers to execute arbitrary code via a bookmark file entry with a long host name, which appears as a host p…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5753
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256664
|
- |
|
bpftp
|
bulletproof_ftp_client
|
Stack-based buffer overflow in BulletProof FTP Client allows user-assisted attackers to execute arbitrary code via a .bps file (aka Session-File) with a long second line, possibly a related issue to …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5754
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256665
|
- |
|
intellitamper
|
intellitamper
|
Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows remote attackers to execute arbitrary code via a MAP file containing a long URL, possibly a related issue to CVE-2006-2494.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5755
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256666
|
- |
|
bpsoft
|
hex_workshop
|
Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 allows user-assisted attackers to cause a denial of service and possibly execute arbitrary code via a long mapping reference in a Color Mappi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5756
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256667
|
- |
|
flatnux
|
flatnux
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS (aka Flatnuke3) 2008-12-11 allow remote attackers to inject arbitrary web script or HTML via (1) the mod parameter to the default UR…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5761
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256668
|
- |
|
mariovaldez
|
simple_text-file_login_script
|
Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5762
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256669
|
- |
|
mariovaldez
|
simple_text-file_login_script
|
PHP remote file inclusion vulnerability in slogin_lib.inc.php in Simple Text-File Login Script (SiTeFiLo) 1.0.6 allows remote attackers to execute arbitrary PHP code via a URL in the slogin_path para…
|
CWE-94
Code Injection
|
CVE-2008-5763
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256670
|
- |
|
2500mhz
|
worksimple
|
PHP remote file inclusion vulnerability in calendar.php in WorkSimple 1.2.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the lang parameter.
|
CWE-94
Code Injection
|
CVE-2008-5764
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
