|
256861
|
- |
|
phpclassifiedsscript
|
php_classifieds_script
|
Multiple SQL injection vulnerabilities in PHP Classifieds Script allow remote attackers to execute arbitrary SQL commands via the fatherID parameter to (1) browse.php and (2) search.php.
|
CWE-89
SQL Injection
|
CVE-2008-2453
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256862
|
- |
|
e107coders
|
e107_blog_engine
|
SQL injection vulnerability in comment.php in the MacGuru BLOG Engine plugin 2.2 for e107 allows remote attackers to execute arbitrary SQL commands via the rid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2455
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256863
|
- |
|
comicshout
|
comicshout
|
SQL injection vulnerability in index.php in ComicShout 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the comic_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2456
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256864
|
- |
|
bitmixsoft
|
php-jokesite
|
SQL injection vulnerability in jokes_category.php in PHP-Jokesite 2.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2457
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256865
|
- |
|
entertainmentscript
|
entertainmentscript
|
Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.
|
CWE-22
Path Traversal
|
CVE-2008-2459
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256866
|
- |
|
netious
|
netious_cms
|
SQL injection vulnerability in index.php in Netious CMS 0.4 allows remote attackers to execute arbitrary SQL commands via the pageid parameter, a different vector than CVE-2006-4047.
|
CWE-89
SQL Injection
|
CVE-2008-2461
|
2017-09-29 10:31 |
2008-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256867
|
- |
|
microsoft
|
office_snapshot_viewer_activex
|
The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attacke…
|
CWE-94
Code Injection
|
CVE-2008-2463
|
2017-09-29 10:31 |
2008-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256868
|
- |
|
libspf
|
libspf2
|
Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modifie…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2469
|
2017-09-29 10:31 |
2008-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256869
|
- |
|
force10
freebsd
juniper
netbsd
openbsd
windriver
|
ftos
freebsd
jnos
netbsd
openbsd
vxworks
|
The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River …
|
CWE-20
Improper Input Validation
|
CVE-2008-2476
|
2017-09-29 10:31 |
2008-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256870
|
- |
|
mx-system
|
mxbb_portal
|
SQL injection vulnerability in index.php in MxBB (aka MX-System) Portal 2.7.3 allows remote attackers to execute arbitrary SQL commands via the page parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2477
|
2017-09-29 10:31 |
2008-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
