|
256991
|
- |
|
duware
|
ducalendar
|
SQL injection vulnerability in detail.asp in DUware DUcalendar 1.0 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the iEve parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2868
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256992
|
- |
|
e-topbiz
|
link_ads_1
|
SQL injection vulnerability in out.php in E-topbiz Link ADS 1 allows remote attackers to execute arbitrary SQL commands via the linkid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2869
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256993
|
- |
|
sharecms
|
sharecms
|
Multiple SQL injection vulnerabilities in ShareCMS 0.1 Beta allow remote attackers to execute arbitrary SQL commands via the (1) eventID parameter to event_info.php and the (2) userID parameter to li…
|
CWE-89
SQL Injection
|
CVE-2008-2870
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256994
|
- |
|
softbizscripts
|
softbiz_jokes_and_funny_pics_script
|
SQL injection vulnerability in index.php in Softbiz Jokes & Funny Pics Script allows remote attackers to execute arbitrary SQL commands via the sbjoke_id parameter, a different vector than CVE-2008-1…
|
CWE-89
SQL Injection
|
CVE-2008-2874
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256995
|
- |
|
webdevindo-cms
|
webdevindo-cms
|
SQL injection vulnerability in index.php in Webdevindo-CMS 1.0.0 allows remote attackers to execute arbitrary SQL commands via the hal parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2875
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256996
|
- |
|
munky
|
munky
|
Directory traversal vulnerability in index.php in mUnky 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the zone parameter.
|
CWE-22
Path Traversal
|
CVE-2008-2876
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256997
|
- |
|
cmsworks
|
cmsworks
|
PHP remote file inclusion vulnerability in admin/include/lib.module.php in cmsWorks 2.2 RC4, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the m…
|
CWE-94
Code Injection
|
CVE-2008-2877
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256998
|
- |
|
relative_real_estate_systems
|
relative_real_estate_systems
|
Relative Real Estate Systems 3.0 and earlier stores passwords in cleartext in a MySQL database, which allows context-dependent attackers to obtain sensitive information.
|
CWE-200
Information Exposure
|
CVE-2008-2881
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256999
|
- |
|
jamroom
|
jamroom
|
PHP remote file inclusion vulnerability in include/plugins/jrBrowser/payment.php in Jamroom 3.3.0 through 3.3.5 allows remote attackers to execute arbitrary PHP code via a URL in the jamroom[jm_dir] …
|
CWE-94
Code Injection
|
CVE-2008-2883
|
2017-09-29 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257000
|
- |
|
odars
|
odars
|
PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allow…
|
CWE-94
Code Injection
|
CVE-2008-2885
|
2017-09-29 10:31 |
2008-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
