|
256821
|
- |
|
web_design_hero
|
joomladate
|
SQL injection vulnerability in the JoomlaDate (com_joomladate) component 1.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the user parameter in a viewProfile action to in…
|
CWE-89
SQL Injection
|
CVE-2008-6068
|
2017-09-29 10:32 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256822
|
- |
|
jlleblanc
|
com_dailymessage
|
SQL injection vulnerability in the Daily Message (com_dailymessage) 1.0.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2008-6076
|
2017-09-29 10:32 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256823
|
- |
|
loudblog
|
loudblog
|
SQL injection vulnerability in loudblog/ajax.php in LoudBlog 0.8.0a and earlier allows remote authenticated users to execute arbitrary SQL commands via the colpick parameter in a singleread action.
|
CWE-89
SQL Injection
|
CVE-2008-6077
|
2017-09-29 10:32 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256824
|
- |
|
limbo_cms
|
com_privmsg
|
SQL injection vulnerability in open.php in the Private Messaging (com_privmsg) component for Limbo CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a pms action t…
|
CWE-89
SQL Injection
|
CVE-2008-6078
|
2017-09-29 10:32 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256825
|
- |
|
codecall
|
com_ionfiles
|
Directory traversal vulnerability in download.php in the ionFiles (com_ionfiles) 4.4.2 component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
|
CWE-22
Path Traversal
|
CVE-2008-6080
|
2017-09-29 10:32 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256826
|
- |
|
simplecustomer
|
simple_customer
|
SQL injection vulnerability in contact.php in Simple Customer 1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6081
|
2017-09-29 10:32 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256827
|
- |
|
southrivertech
|
titan_ftp_server
|
Titan FTP Server 6.26 build 630 allows remote attackers to cause a denial of service (CPU consumption) via the SITE WHO command.
|
CWE-399
Resource Management Errors
|
CVE-2008-6082
|
2017-09-29 10:32 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256828
|
- |
|
.matteoiammarrone
|
iamma_simple_gallery
|
Unrestricted file upload vulnerability in pages/download.php in Iamma Simple Gallery 1.0 and 2.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension…
|
CWE-20
Improper Input Validation
|
CVE-2008-6084
|
2017-09-29 10:32 |
2009-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256829
|
- |
|
camera_life
|
camera_life
|
SQL injection vulnerability in album.php in Camera Life 2.6.2b4 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3355.
|
CWE-89
SQL Injection
|
CVE-2008-6086
|
2017-09-29 10:32 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256830
|
- |
|
camera_life
|
camera_life
|
Cross-site scripting (XSS) vulnerability in topic.php in Camera Life 2.6.2b4 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2008-6087
|
2017-09-29 10:32 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
