|
257151
|
- |
|
mantis
|
mantis
|
http://marc.info/?l=bugtraq&m=121130774617956&w=4
"We have found an XSS vulnerability in return_dynamic_filters.php. In
order to exploit this vulnerability the attacker must be authenticated.
Us…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3331
|
2017-09-29 10:31 |
2008-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257152
|
- |
|
mantis
|
mantis
|
Eval injection vulnerability in adm_config_set.php in Mantis before 1.1.2 allows remote authenticated administrators to execute arbitrary code via the value parameter.
|
CWE-94
Code Injection
|
CVE-2008-3332
|
2017-09-29 10:31 |
2008-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257153
|
- |
|
e-topbiz
|
shopcart_dx
|
SQL injection vulnerability in product_detail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3346
|
2017-09-29 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257154
|
- |
|
atomphotoblog
|
atomphotoblog
|
SQL injection vulnerability in atomPhotoBlog.php in Atom PhotoBlog 1.0.9.1 and 1.1.5b1 allows remote attackers to execute arbitrary SQL commands via the photoId parameter in a show action.
|
CWE-89
SQL Injection
|
CVE-2008-3351
|
2017-09-29 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257155
|
- |
|
nersoft
|
live_music_plus
|
SQL injection vulnerability in index.php in Live Music Plus 1.1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a Singer action.
|
CWE-89
SQL Injection
|
CVE-2008-3352
|
2017-09-29 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257156
|
- |
|
camera_life
|
camera_life
|
SQL injection vulnerability in sitemap.xml.php in Camera Life 2.6.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action.
|
CWE-89
SQL Injection
|
CVE-2008-3355
|
2017-09-29 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257157
|
- |
|
intellitamper
|
intellitamper
|
Stack-based buffer overflow in the HTML parser in IntelliTamper 2.0.7 allows remote attackers to execute arbitrary code via a long URL in the HREF attribute of an A element, a different vulnerability…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3360
|
2017-09-29 10:31 |
2008-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257158
|
- |
|
intellitamper
|
intellitamper
|
Stack-based buffer overflow in IntelliTamper 2.07 allows remote web sites to execute arbitrary code via a long HTTP Server header.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3361
|
2017-09-29 10:31 |
2008-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257159
|
- |
|
giulio_ganci
wordpress
|
wp_downloads_manager
|
Unrestricted file upload vulnerability in upload.php in the Giulio Ganci Wp Downloads Manager module 0.2 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an ex…
|
CWE-20
Improper Input Validation
|
CVE-2008-3362
|
2017-09-29 10:31 |
2008-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257160
|
- |
|
trend_micro
|
officescan
|
Buffer overflow in the ObjRemoveCtrl Class ActiveX control in OfficeScanRemoveCtrl.dll 7.3.0.1020 in Trend Micro OfficeScan Corp Edition (OSCE) Web-Deployment 7.0, 7.3 build 1343 Patch 4 and other bu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3364
|
2017-09-29 10:31 |
2008-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
