|
256741
|
- |
|
ezonescripts
|
adult_banner_exchange_website
|
SQL injection vulnerability in click.php in Adult Banner Exchange Website allows remote attackers to execute arbitrary SQL commands via the targetid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6101
|
2017-09-29 10:32 |
2009-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256742
|
- |
|
ezonescripts
|
link_trader_script
|
SQL injection vulnerability in ratelink.php in Link Trader Script allows remote attackers to execute arbitrary SQL commands via the lnkid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6102
|
2017-09-29 10:32 |
2009-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256743
|
- |
|
gwm
|
galatolo_webmanager
|
Cross-site scripting (XSS) vulnerability in result.php in Galatolo WebManager (GWM) 1.0 allows remote attackers to inject arbitrary web script or HTML via the key parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6108
|
2017-09-29 10:32 |
2009-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256744
|
- |
|
netart_media
|
vlog_system
|
SQL injection vulnerability in blog.php in NetArt Media Vlog System 1.1 allows remote attackers to execute arbitrary SQL commands via the note parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6111
|
2017-09-29 10:32 |
2009-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256745
|
- |
|
scriptsez
|
ez_ringtone_manager
|
Multiple directory traversal vulnerabilities in Ez Ringtone Manager allow remote attackers to read arbitrary files via a .. (dot dot) in the id parameter in a detail action to (1) main.php and (2) te…
|
CWE-22
Path Traversal
|
CVE-2008-6112
|
2017-09-29 10:32 |
2009-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256746
|
- |
|
mytipper
|
zogo_shop
|
SQL injection vulnerability in product_details.php in the Mytipper Zogo-shop 1.15.4 plugin for e107 allows remote attackers to execute arbitrary SQL commands via the product parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6114
|
2017-09-29 10:32 |
2009-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256747
|
- |
|
prozilla
|
hosting_index
|
SQL injection vulnerability in directory.php in Prozilla Hosting Index allows remote attackers to execute arbitrary SQL commands via the id parameter in a deadlink action, a different vector than CVE…
|
CWE-89
SQL Injection
|
CVE-2008-6115
|
2017-09-29 10:32 |
2009-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256748
|
- |
|
extrosoft
|
com_thyme
|
SQL injection vulnerability in the EXtrovert Software Thyme (com_thyme) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the event parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2008-6116
|
2017-09-29 10:32 |
2009-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256749
|
- |
|
pilotgroup
|
pg_job_site_pro
|
SQL injection vulnerability in homepage.php in PG Job Site Pro allows remote attackers to execute arbitrary SQL commands via the poll_view_id parameter in a results action.
|
CWE-89
SQL Injection
|
CVE-2008-6117
|
2017-09-29 10:32 |
2009-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256750
|
- |
|
goople_cms
|
goople_cms
|
win/content/upload.php in Goople CMS 1.7 allows remote attackers to bypass authentication and gain administrative access by setting the loggedin cookie to 1.
|
CWE-287
Improper Authentication
|
CVE-2008-6118
|
2017-09-29 10:32 |
2009-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
