260421
|
- |
|
greensql
|
greensql-console
|
Unspecified vulnerability in GreenSQL-Console before 0.3.5 allows attackers to obtain the "installation directory" via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2008-6417
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260422
|
- |
|
jun_sota
|
ffftp
|
Directory traversal vulnerability in FFFTP 1.96b allows remote FTP servers to create or overwrite arbitrary files via a response to an FTP LIST command with a filename that contains a .. (dot dot).
|
CWE-22
Path Traversal
|
CVE-2008-6424
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260423
|
- |
|
kayalang
|
kaya
|
The CGI framework in Kaya 0.4.0 allows remote attackers to inject arbitrary HTTP headers and conduct cross-site scripting (XSS) attacks via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6428
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260424
|
- |
|
blueriver
|
sava_cms
|
Cross-site scripting (XSS) vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6433
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260425
|
- |
|
blueriver
|
sava_cms
|
SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6434
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260426
|
- |
|
xerox
|
workcentre
|
Cross-site scripting (XSS) vulnerability in the Web Server in Xerox WorkCentre 7132, 7228, 7235, and 7245 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6436
|
2017-08-17 10:29 |
2009-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260427
|
- |
|
sina
|
dloader
|
Insecure method vulnerability in Sina Inc. DLoader Class ActiveX Control allows remote attackers to overwrite arbitrary files via a URL in the first parameter to the DonwloadAndInstall method. NOTE:…
|
NVD-CWE-Other
|
CVE-2008-6442
|
2017-08-17 10:29 |
2009-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260428
|
- |
|
phpkf
|
phpkf
|
SQL injection vulnerability in forum_duzen.php in phpKF allows remote attackers to execute arbitrary SQL commands via the fno parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6443
|
2017-08-17 10:29 |
2009-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260429
|
- |
|
yourplace
|
yourplace
|
Unspecified vulnerability in YourPlace before 1.0.1 has unknown impact and attack vectors, possibly related to improper authentication and the ability to upload arbitrary PHP code. NOTE: some of the…
|
CWE-287
Improper Authentication
|
CVE-2008-6445
|
2017-08-17 10:29 |
2009-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260430
|
- |
|
skyarc
|
mtcms_wysiwyg_editor
|
Cross-site scripting (XSS) vulnerability in install.cgi in SKYARC System MTCMS WYSIWYG Editor allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6448
|
2017-08-17 10:29 |
2009-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|