|
256621
|
- |
|
webcamxp
|
webcamxp
|
Directory traversal vulnerability in webcamXP 5.3.2.375 and 5.3.2.410 build 2132 allows remote attackers to read arbitrary files via a ..%2F (encoded dot dot slash) in the URI.
|
CWE-22
Path Traversal
|
CVE-2008-5862
|
2017-09-29 10:32 |
2009-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256622
|
- |
|
v-gn
|
userlocator
|
SQL injection vulnerability in locator.php in the Userlocator module 3.0 for Woltlab Burning Board (wBB) allows remote attackers to execute arbitrary SQL commands via the y parameter in a get_user ac…
|
CWE-89
SQL Injection
|
CVE-2008-5863
|
2017-09-29 10:32 |
2009-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256623
|
- |
|
joomlahbs
|
com_tophotelmodule
hotel_booking_reservation_system
|
SQL injection vulnerability in the Top Hotel (com_tophotelmodule) component 1.0 in the Hotel Booking Reservation System (aka HBS) 1.0.0 for Joomla! allows remote attackers to execute arbitrary SQL co…
|
CWE-89
SQL Injection
|
CVE-2008-5864
|
2017-09-29 10:32 |
2009-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256624
|
- |
|
joomlahbs
|
hotel_booking_reservation_system
|
SQL injection vulnerability in the com_hbssearch component 1.0 in the Hotel Booking Reservation System (aka HBS) 1.0.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the r_…
|
CWE-89
SQL Injection
|
CVE-2008-5865
|
2017-09-29 10:32 |
2009-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256625
|
- |
|
intellitamper
|
intellitamper
|
Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows user-assisted attackers to execute arbitrary code via a long ProxyLogin value in a configuration (.cfg) file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5868
|
2017-09-29 10:32 |
2009-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256626
|
- |
|
yerba
|
yerba
|
Yerba SACphp 6.3 and earlier allows remote attackers to bypass authentication and gain administrative access via a galleta[sesion] cookie that has a value beginning with 1:1: followed by a username.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5873
|
2017-09-29 10:32 |
2009-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256627
|
- |
|
joomlahbs
|
com_5starhotels
com_allhotels
hotel_booking_reservation_system
|
Multiple SQL injection vulnerabilities in the Hotel Booking Reservation System (aka HBS) for Joomla! allow remote attackers to execute arbitrary SQL commands via the id parameter in a showhoteldetail…
|
CWE-89
SQL Injection
|
CVE-2008-5874
|
2017-09-29 10:32 |
2009-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256628
|
- |
|
joomlahbs
|
com_lowcosthotels
hotel_booking_reservation_system
|
SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation System (aka HBS) for Joomla! allows remote attackers to execute arbitrary SQL commands via the id param…
|
CWE-89
SQL Injection
|
CVE-2008-5875
|
2017-09-29 10:32 |
2009-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256629
|
- |
|
phpclanwebsite
|
phpclanwebsite
|
Multiple SQL injection vulnerabilities in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (…
|
CWE-89
SQL Injection
|
CVE-2008-5877
|
2017-09-29 10:32 |
2009-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256630
|
- |
|
phpclanwebsite
|
phpclanwebsite
|
Multiple directory traversal vulnerabilities in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and earlier, when magic_quotes_gpc is disabled and register_globals is enabled, allow remote attackers to in…
|
CWE-22
Path Traversal
|
CVE-2008-5878
|
2017-09-29 10:32 |
2009-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
