|
256561
|
- |
|
nodstrum
|
mysql_calendar
|
Nodstrum MySQL Calendar 1.1 and 1.2 allows remote attackers to bypass authentication and gain administrative access by setting the nodstrumCalendarV2 cookie to 1. NOTE: some of these details are obt…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5738
|
2017-09-29 10:32 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256562
|
- |
|
pligg
|
pligg_cms
|
SQL injection vulnerability in evb/check_url.php in Pligg CMS 9.9.5 Beta allows remote attackers to execute arbitrary SQL commands via the url parameter.
|
CWE-89
SQL Injection
|
CVE-2008-5739
|
2017-09-29 10:32 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256563
|
- |
|
netcat
|
netcat
|
Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the redirect parameter in a…
|
CWE-59
Link Following
|
CVE-2008-5742
|
2017-09-29 10:32 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256564
|
- |
|
alstrasoft
|
web_email_script_enterprise
|
SQL injection vulnerability in index.php in AlstraSoft Web Email Script Enterprise (ESE) allows remote attackers to execute arbitrary SQL commands via the id parameter in a directory action.
|
CWE-89
SQL Injection
|
CVE-2008-5751
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256565
|
- |
|
wordpress
|
page_flip_image_gallery_plugin
|
Directory traversal vulnerability in getConfig.php in the Page Flip Image Gallery plugin 0.2.2 and earlier for WordPress, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary …
|
CWE-22
Path Traversal
|
CVE-2008-5752
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256566
|
- |
|
bpftp
|
bulletproof_ftp_client
|
Stack-based buffer overflow in BulletProof FTP Client 2.63 and 2010 allows user-assisted attackers to execute arbitrary code via a bookmark file entry with a long host name, which appears as a host p…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5753
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256567
|
- |
|
bpftp
|
bulletproof_ftp_client
|
Stack-based buffer overflow in BulletProof FTP Client allows user-assisted attackers to execute arbitrary code via a .bps file (aka Session-File) with a long second line, possibly a related issue to …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5754
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256568
|
- |
|
intellitamper
|
intellitamper
|
Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows remote attackers to execute arbitrary code via a MAP file containing a long URL, possibly a related issue to CVE-2006-2494.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5755
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256569
|
- |
|
bpsoft
|
hex_workshop
|
Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 allows user-assisted attackers to cause a denial of service and possibly execute arbitrary code via a long mapping reference in a Color Mappi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5756
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256570
|
- |
|
flatnux
|
flatnux
|
Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS (aka Flatnuke3) 2008-12-11 allow remote attackers to inject arbitrary web script or HTML via (1) the mod parameter to the default UR…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5761
|
2017-09-29 10:32 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
